ESXi 5.0 < Build 702118 Multiple Vulnerabilities (remote check)
High Nessus Plugin ID 70882
SynopsisThe remote VMware ESXi 5.0 host is affected by multiple security vulnerabilities.
DescriptionThe remote VMware ESXi 5.0 host is affected by the following security vulnerabilities :
- An error exists related to NFS traffic handling that could allow memory corruption leading to execution of arbitrary code. (CVE-2012-2448)
- Out-of-bounds write errors exist related to virtual floppy disc devices and virtual SCSI devices that could allow local privilege escalation. (CVE-2012-2449, CVE-2012-2450)
SolutionApply patch ESXi500-201205401-SG. Alternatively, implement the workaround referenced in the vendor advisory.