Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.105892
Kategorie:VMware Local Security Checks
Titel:VMware ESXi updates address multiple security issues (VMSA-2016-0014)
Zusammenfassung:The graphic acceleration functions used in VMware Tools for OSX handle memory incorrectly.
Beschreibung:Summary:
The graphic acceleration functions used in VMware Tools for OSX handle memory incorrectly.

Vulnerability Insight:
Two resulting NULL pointer dereference vulnerabilities may allow for local privilege escalation
on Virtual Machines that run OSX.

The issues can be remediated by installing a fixed version of VMware Tools on affected OSX VMs directly. Alternatively the fixed
version of Tools can be installed through ESXi or Fusion after first updating to a version of ESXi or Fusion that ships with a
fixed version of VMware Tools.

Solution:
Apply the missing patch(es).

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2016-7081
BugTraq ID: 92935
http://www.securityfocus.com/bid/92935
http://www.securitytracker.com/id/1036805
Common Vulnerability Exposure (CVE) ID: CVE-2016-7082
BugTraq ID: 92934
http://www.securityfocus.com/bid/92934
Common Vulnerability Exposure (CVE) ID: CVE-2016-7083
https://www.exploit-db.com/exploits/40398/
Common Vulnerability Exposure (CVE) ID: CVE-2016-7084
https://www.exploit-db.com/exploits/40399/
Common Vulnerability Exposure (CVE) ID: CVE-2016-7079
BugTraq ID: 92938
http://www.securityfocus.com/bid/92938
http://www.securitytracker.com/id/1036804
Common Vulnerability Exposure (CVE) ID: CVE-2016-7080
Common Vulnerability Exposure (CVE) ID: CVE-2016-7085
BugTraq ID: 92940
http://www.securityfocus.com/bid/92940
Common Vulnerability Exposure (CVE) ID: CVE-2016-7086
BugTraq ID: 92941
http://www.securityfocus.com/bid/92941
CopyrightCopyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.