ESXi 5.0 < Build 702118 Multiple Vulnerabilities (remote check)

This script is (C) 2013-2015 Tenable Network Security, Inc.

Synopsis :

The remote VMware ESXi 5.0 host is affected by multiple security

Description :

The remote VMware ESXi 5.0 host is affected by the following security
vulnerabilities :

- An error exists related to NFS traffic handling that
could allow memory corruption leading to execution of
arbitrary code. (CVE-2012-2448)

- Out-of-bounds write errors exist related to virtual
floppy disc devices and virtual SCSI devices that could
allow local privilege escalation. (CVE-2012-2449,

See also :

Solution :

Apply patch ESXi500-201205401-SG. Alternatively, implement the
workaround referenced in the vendor advisory.

Risk factor :

High / CVSS Base Score : 9.0
CVSS Temporal Score : 6.7
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 70882 ()

Bugtraq ID: 53369

CVE ID: CVE-2012-2448

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial