VMware patches five holes in ESX Server

By Dan Kaplan on Feb 25, 2008 11:07 AM
Filed under Applications

Virtualisation software maker VMware on Friday issued fixes for five vulnerabilities in its ESX Server.

The bugs could be exploited to expose sensitive information, bypass security controls or launch a denial-of-service attack, according to vulnerability tracking firm Secunia, which ranked the flaws "moderately critical."

The holes affect the hypervisor-based ESX Server versions 2 and 3.

In September, VMware issued a patch release to correct 13 "highly critical" flaws in the ESX Server. The product allows multiple virtual machines to run on the same physical server.

News of the vulnerabilities come one day after public reports said VMware soon plans to unveil a security initiative -- called VMSafe -- whose goal is to protect machines running on the company's virtualisation software. VMware plans to partner with a number of large IT security players -- including Symantec, McAfee and IBM Internet Security Systems -- on the undertaking.

See original article on scmagazineus.com

vmware vmware, patch esx

Two vulnerabilities found in VMware virtualisation products

Ads by Google

What are your thoughts on this article? Add your comment below.

To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.

NOTE: You must be a registered member of SC Magazine to post a comment.

Click here to login | Click here to register

comments powered by Disqus

FOLLOW US...