Test Kennung:	1.3.6.1.4.1.25623.1.0.103466
Kategorie:	VMware Local Security Checks
Titel:	VMware ESXi/ESX patches address privilege escalation (VMSA-2012-0007)
Zusammenfassung:	The remote ESXi is missing one or more security related Updates from VMSA-2012-0007.
Beschreibung:	Summary: The remote ESXi is missing one or more security related Updates from VMSA-2012-0007. Vulnerability Insight: VMware hosted products and ESXi/ESX patches address privilege escalation. a. VMware Tools Incorrect Folder Permissions Privilege Escalation The access control list of the VMware Tools folder is incorrectly set. Exploitation of this issue may lead to local privilege escalation on Windows-based Guest Operating Systems. Affected Software/OS: ESXi 5.0 without patch ESXi500-201203102-SG ESXi 4.1 without patch ESXi410-201201402-BG ESXi 4.0 without patch ESXi400-201203402-BG ESXi 3.5 without patch ESXe350-201203402-T-BG ESX 4.1 without patch ESX410-201201401-SG ESX 4.0 without patch ESX400-201203401-SG ESX 3.5 without patch ESX350-201203402-BG Solution: Apply the missing patch(es). CVSS Score: 8.3 CVSS Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-1518 BugTraq ID: 53006 http://www.securityfocus.com/bid/53006 http://osvdb.org/81163 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745 http://www.securitytracker.com/id?1026922 http://www.securitytracker.com/id?1026923 http://secunia.com/advisories/48782
Copyright	Copyright (C) 2012 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.