Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
VMSA-2016-0014: VMware ESXi updates address multiple security issues
Information
Severity
Severity
High
Family
Family
VMware Local Security Checks
CVSSv2 Base
CVSSv2 Base
7.2
CVSSv2 Vector
CVSSv2 Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
7 years ago
Modified
Modified
5 years ago
Summary
The graphic acceleration functions used in VMware Tools for OSX handle memory incorrectly. Two resulting NULL pointer dereference vulnerabilities may allow for local privilege escalation on Virtual Machines that run OSX. The issues can be remediated by installing a fixed version of VMware Tools on affected OSX VMs directly. Alternatively the fixed version of Tools can be installed through ESXi or Fusion after first updating to a version of ESXi or Fusion that ships with a fixed version of VMware Tools.
Detection Method
Detection Method
Checks for missing patches.
Solution
Solution
Apply the missing patch(es).