What's new in this version: Server 1.0.7 addresses the following security issues:
Security Fix for VMware ISAPI Extension: - Internet Server Application Programming Interface (ISAPI) is an API that extends the functionality of Internet Information Server (IIS). VMware uses ISAPI extensions in its Server product. - One of the ISAPI extensions provided by VMware is vulnerable to a remote denial of service. By sending a malformed request, IIS might shut down. IIS 6.0 restarts automatically. However, IIS 5.0 does not restart automatically when its Startup Type is set to Manual. - The Common Vulnerabilities and Exposures has assigned the name CVE-2008-3697 to this issue.
Setting ActiveX killbit: - From this release, VMware has set the killbit on its ActiveX controls. Setting the killbit ensures that ActiveX controls cannot run in Internet Explorer (IE), and avoids security issues involving ActiveX controls in IE. See the KB article 240797 from Microsoft and the related references on this topic. - Security vulnerabilities have been reported for ActiveX controls provided by VMware when run in IE. Under specific circumstances, exploitation of these ActiveX controls might result in denial-of-service or can allow running of arbitrary code when the user browses a malicious Web site or opens a malicious file in IE browser. An attempt to run unsafe ActiveX controls in IE might result in pop-up windows warning the user. - Note: IE can be configured to run unsafe ActiveX controls without prompting. VMware recommends that you retain the default settings in IE, which prompts when unsafe actions are requested. - Earlier, VMware had issued knowledge base articles, KB 5965318 and KB 9078920 on security issues with ActiveX controls. - To avoid malicious scripts that exploit ActiveX controls, do not enable unsafe ActiveX objects in your browser settings. As a best practice, do not browse untrusted Web sites as an administrator and do not click OK or Yes if prompted by IE to allow certain actions. - The Common Vulnerabilities and Exposures has assigned the names CVE-2008-3691, CVE-2008-3692, CVE-2008-3693, CVE-2008-3695, CVE-2007-5438, and CVE-2008-3696 to the security issues with VMware ActiveX controls.
Security Fix for Local Privilege Escalation on Host System: - This release fixes a privilege escalation vulnerability in host operating systems. Exploitation of this vulnerability allows users to run arbitrary code on the host system with elevated privileges. - The Common Vulnerabilities and Exposures has assigned the name CVE-2008-3698 to this issue.
Update to Freetype: - FreeType 2.3.6 resolves an integer overflow vulnerability and other vulnerabilities that can allow malicious users to run arbitrary code or might cause a denial-of-service after reading a maliciously crafted file. This release updates FreeType to its latest version 2.3.7. - The Common Vulnerabilities and Exposures has assigned the names CVE-2008-1806, CVE-2008-1807, and CVE-2008-1808 to the issues resolved in Freetype 2.3.6.
VMware Server 1.0.7 Build 108231 相關參考資料
CVE-2007-5438 Detail - NVD
2007年10月12日 — Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation ...
https://nvd.nist.gov
CVE-2008-3698
2008年9月3日 — 5 build 109488, and VMware Server before 1.0.7 ... vmware-server · Launchpad, Ubuntu, Debian, dapper ... Released (1.0.7 build 108231). References.
https://ubuntu.com
SID 1:14325
... 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact and remote attack vectors, a ...
https://www.snort.org
SID 1:14518
5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown impact ... 5 build 109488, and VMware Server before 1.0.7 build 108231 has unknown ...
https://snort.org
VMSA-2008-0014.3
VMware Product Server. Product Version 1.x. Running on Windows. Replace with/ Apply Patch 1.0.7 build 108231 or later. VMware Product Server. Product Version 1.
https://www.vmware.com
VMSA-2008-0014.3 | JP
VMware Product Server. Product Version 1.x. Running on Windows. Replace with/ Apply Patch 1.0.7 build 108231 or later. VMware Product Server. Product Version 1.
https://www.vmware.com
VMware Products Multiple Vulnerabilities
2008年9月2日 — VMware Server 1.x: Update to version 1.0.7 build 108231 or later. http://www.vmware.com/download/server/. VMware Workstation 5.x: Update to ...
https://www.hkcert.org
VMware Virtual 8086 - Linux Local Ring0
2009年10月27日 — VMware Virtual 8086 - Linux Local Ring0. CVE ... build 118166 VMWare Server 2.0.1 build ... 1.0.7 build 108231 VMWare Server 1.0.7 ...
https://www.exploit-db.com
Vmware Vmware Server : Security vulnerabilities, CVEs
An unspecified ISAPI extension in VMware Server before 1.0.7 build 108231 allows remote attackers to cause a denial of service (IIS crash) via a malformed ...
https://www.cvedetails.com
Web Attack: VMware Directory Traversal CVE-2009-3733
A remote attacker could exploit the vulnerability using directory-traversal characters ('../') to access arbitrary files that contain sensitive information that ...
https://www.broadcom.com
|