ESXi 5.5 < Build 1623387 Multiple Vulnerabilities (remote check)
Medium Nessus Plugin ID 83781
SynopsisThe remote VMware ESXi 5.5 host is affected by multiple vulnerabilities.
DescriptionThe remote VMware ESXi host is version 5.5 prior to build 1623387. It is, therefore, affected by multiple vulnerabilities :
- Multiple integer overflow conditions exist in the bundled GNU C Library (glibc) due to improper validation of user-supplied input. A remote attacker can exploit these issues to cause a buffer overflow, resulting in a denial of service condition. (CVE-2013-4332)
- A flaw exists in the monlist feature in NTP. A remote attacker can exploit this flaw, using a specially crafted packet to load the query function in monlist, to conduct a distributed denial of service attack.
SolutionApply patch ESXi550-201403101-SG for ESXi 5.5.