Oval Definition:	oval:org.mitre.oval:def:20497
Revision Date: 2014-01-20 Version: 4 Title: VMware vSphere and vCOps updates to third party libraries Description: The headerVerifyInfo function in lib/header.c in RPM before 4.9.1.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a negative value in a region offset of a package header, which is not properly handled in a numeric range comparison. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2012-0815 Platform(s): VMWare ESX Server 4.0 VMWare ESX Server 4.1 Product(s): Definition Synopsis Patch ESX410-201208105-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201208105-SG is not installed OR Patch ESX400-201209404-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201209404-SG is not installed
BACK