New update for VMware ESX Server
Posted by mrjohn on Nov 14, 2008
The developers of VMware have released a new update for the ESX Server that eliminates three vulnerabilities from the past versions.
Among the vulnerabilities corrected is an error in the SNMPv3 application, an error that we have known about since the middle of the year. It blocks the authentication function, allowing attackers to access the server.
The update also eliminates a vulnerability related to buffer overflow in the libtiff graphics library, which allows attackers to insert arbitrary code and run it through TIFF files.
The update also removes a bug in the libxml2 library that kills the application.
You can find more detailed information about the changes to the new version on the official VMware website. You can also find links to updates for the different versions.
Thanks to edtape for providing the inspiration for this article.
