VMware Local Security Checks : VMware ESXi Guest RPC Null Pointer Dereference Vulnerability (VMSA-2017-0015)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.811840

Kategorie: VMware Local Security Checks

Titel: VMware ESXi Guest RPC Null Pointer Dereference Vulnerability (VMSA-2017-0015)

Zusammenfassung: VMware ESXi is prone to a NULL pointer dereference vulnerability.

Beschreibung: Summary:
VMware ESXi is prone to a NULL pointer dereference vulnerability.

Vulnerability Insight:
The flaw is due to an error in handling
guest RPC requests.

Vulnerability Impact:
Successful exploitation will allow attackers
with normal user privileges to crash their VMs.

Affected Software/OS:
VMware ESXi 6.5 before ESXi650-201707101-SG

VMware ESXi 6.0 before ESXi600-201706101-SG

VMware ESXi 5.5 before ESXi550-201709101-SG

Solution:
Apply the missing patch(es).

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-4925
BugTraq ID: 100842
http://www.securityfocus.com/bid/100842
http://www.securitytracker.com/id/1039367
http://www.securitytracker.com/id/1039368

Copyright Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.811840
Kategorie:	VMware Local Security Checks
Titel:	VMware ESXi Guest RPC Null Pointer Dereference Vulnerability (VMSA-2017-0015)
Zusammenfassung:	VMware ESXi is prone to a NULL pointer dereference vulnerability.
Beschreibung:	Summary: VMware ESXi is prone to a NULL pointer dereference vulnerability. Vulnerability Insight: The flaw is due to an error in handling guest RPC requests. Vulnerability Impact: Successful exploitation will allow attackers with normal user privileges to crash their VMs. Affected Software/OS: VMware ESXi 6.5 before ESXi650-201707101-SG VMware ESXi 6.0 before ESXi600-201706101-SG VMware ESXi 5.5 before ESXi550-201709101-SG Solution: Apply the missing patch(es). CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-4925 BugTraq ID: 100842 http://www.securityfocus.com/bid/100842 http://www.securitytracker.com/id/1039367 http://www.securitytracker.com/id/1039368
Copyright	Copyright (C) 2017 Greenbone AG