Oval Definition:	oval:org.mitre.oval:def:20618
Revision Date: 2014-01-20 Version: 4 Title: VMware Workstation, Player, ESXi and ESX patches address critical security issues Description: VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly register SCSI devices, which allows guest OS users to cause a denial of service (invalid write operation and VMX process crash) or possibly execute arbitrary code on the host OS by leveraging administrative privileges on the guest OS. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2012-2450 Platform(s): VMWare ESX Server 3.5 VMWare ESX Server 4.0 VMWare ESX Server 4.1 Product(s): Definition Synopsis Patch ESX410-201205401-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201205401-SG is not installed OR Patch ESX400-201205401-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201205401-SG is not installed OR Patch ESX350-201205401-SG is not installed VMware ESX Server 3.5.0 is installed AND Patch ESX350-201205401-SG is not installed
BACK