ESXi 5.5 < Build 3568722 / 6.0 < Build 3568940 glibc DNS Resolver RCE (VMSA-2016-0002) (remote check)

Critical Nessus Plugin ID 88906


The remote VMware ESXi host is affected by a remote code execution vulnerability.


The remote VMware ESXi host is 5.5 prior to build 3568722 or 6.0 prior to build 3568940. It is, therefore, affected by a stack-based buffer overflow condition in the GNU C Library (glibc) DNS client-side resolver due to improper validation of user-supplied input when looking up names via the getaddrinfo() function. An attacker can exploit this to execute arbitrary code by using an attacker-controlled domain name, an attacker-controlled DNS server, or through a man-in-the-middle attack.


Apply the appropriate patch as referenced in the vendor advisory.

See Also

Plugin Details

Severity: Critical

ID: 88906

File Name: vmware_VMSA-2016-0002_remote.nasl

Version: $Revision: 1.11 $

Type: remote

Family: Misc.

Published: 2016/02/23

Modified: 2016/08/16

Dependencies: 57396

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/o:vmware:esxi

Required KB Items: Host/VMware/version, Host/VMware/release

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2016/02/21

Vulnerability Publication Date: 2015/07/14

Reference Information

CVE: CVE-2015-7547

BID: 83265

OSVDB: 134584

VMSA: 2016-0002

IAVB: 2016-B-0036, 2016-B-0037

CERT: 457759

EDB-ID: 39454