ESXi 5.0 < Build 515841 Multiple Vulnerabilities (remote check)

This script is (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote VMware ESXi 5.0 host is affected by multiple security
vulnerabilities.

Description :

The remote VMware ESXi 5.0 host is affected by the following security
vulnerabilities :

- An error exists in the file misc/mntent_r.c that could
allow a local attacker to cause denial of service
conditions. (CVE-2010-0296)

- An error exists related to glibc, the dynamic linker
and '$ORIGIN' substitution that could allow privilege
escalation. (CVE-2011-0536)

- An error exists in the function 'fnmatch' in the file
posix/fnmatch.c that could allow arbitrary code
execution. (CVE-2011-1071)

- An error exists in the file locale/programs/locale.c
related to localization environment variables that
could allow privilege escalation. (CVE-2011-1095)

- An error exists related to glibc, the dynamic linker
and 'RPATH' that could allow privilege escalation.
(CVE-2011-1658)

- An error exists in the function 'fnmatch' related to
UTF-8 string handling that could allow privilege
escalation. (CVE-2011-1659)

See also :

http://kb.vmware.com/kb/2007671
http://www.vmware.com/security/advisories/VMSA-2011-0012.html

Solution :

Apply ESXi500-201112401-SG.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.6
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 70880 ()

Bugtraq ID: 46563
47370

CVE ID: CVE-2010-0296
CVE-2011-0536
CVE-2011-1071
CVE-2011-1095
CVE-2011-1658
CVE-2011-1659