Release date:
Updated on: 2013-09-02
Affected Systems:
VMWare ESX 4.1
VMWare ESX 4.0
VMWare ESXi 1, 5.0
VMWare ESXi 1, 4.1
VMWare ESXi 1, 4.0
Description:
--------------------------------------------------------------------------------
Bugtraq id: 62077
CVE (CAN) ID: CVE-2013-1661
VMware ESX Server is an enterprise-level virtual computer software for any system environment.
ESXi 4.0, 4.1, 5.0, 5.1, ESX 4.0, and 4.1 have a remote denial of service vulnerability in NFC protocol processing, attackers need to intercept and modify the NFC traffic between ESXi/ESX and the client. After successful exploitation, DOS may occur.
<* Source: Alex Chapman
Link: https://www.vmware.com/support/support-resources/advisories/VMSA-2013-0011.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
VMWare
------
VMWare has released a Security Bulletin (VMSA-2013-0011) and patches for this:
VMSA-2013-0011: VMware ESXi and ESX address an NFC Protocol Unhandled Exception
Link: https://www.vmware.com/support/support-resources/advisories/VMSA-2013-0011.html
Patch download:
------------
Https://www.vmware.com/patchmgr/download.portal
ESX 5.1
--------
File: ESXi510-201307001.zip
Md5sum: 24065646806665d176a373bf9a861f98
Sha1sum: c07a9361df8d9adcd2ff1f8e949d41fbeb091f0f
Http://kb.vmware.com/kb/2052151
ESXi510-201307001 contains ESXi510-201307101-SG
ESX 5.0
------------------
File: ESXi500-201308001.zip
Md5sum: 90d20a6921f35ededfc5021afeedc63f
Sha1sum: e739a671ab0bc9820fef90dc7ca4445eeb6a056d
Http://kb.vmware.com/kb/2053139
ESXi500-201308001 contains ESXi500-201308101-SG
ESX 4.1
------------------
File: ESXi410-201304001.zip
Md5sum: 9ce63bcacb3412fc1c8a6a8c47ac6af6
Sha1sum: 241603ef6b856e573a62fe27da039c8fffe54b1d
Http://kb.vmware.com/kb/2045255
ESXi410-201304001 contains ESXi410-201304401-SG
ESX 4.0
------------------
File: ESXi400-201305001.zip
Md5sum: 065d3fa4b0f52dd38c2bd92e5bfc5580
Sha1sum: 1f3cab25a144746372d86071a47e417c439e276a
Http://kb.vmware.com/kb/2044246
ESXi400-201305001 contains ESXi400-201305401-SG
ESX 1, 4.1
--------
File: ESX410-201304001.zip
Md5sum: df9ef1d25f383a12d2fbc47cdc5f55d2
Sha1sum: e49068da7cf7e0ada57c4604cbc9ba253c03e3a0
Http://kb.vmware.com/kb/2045251
ESX410-201304001 contains ESX410-201304401-SG
ESX 1, 4.0
-------
File: ESX400-201305001.zip
Md5sum: c9ac91d3d803c7b7cb9df401c20b91c0
Sha1sum: 7f5cef274c709248daa56d8c0e6fcc1ba86ae411
Http://kb.vmware.com/kb/2044242
ESX400-201305001 contains ESX400-201305401-SG
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
