SynopsisThe remote VMware ESXi 5.1 host is affected by multiple security vulnerabilities.
DescriptionThe remote VMware ESXi 5.1 host is affected by the following security vulnerabilities :
- An input validation error exists in the function 'png_set_text_2' in the libpng library that could allow memory corruption and arbitrary code execution.
- A privilege escalation vulnerability exists in the Virtual Machine Communication Interface (VMCI). A local attacker can exploit this, via control code, to change allocated memory, resulting in the escalation of privileges. (CVE-2013-1406)
- An error exists related to Network File Copy (NFC) handling that could allow denial of service attacks or arbitrary code execution. (CVE-2013-1659)