BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

VMware ESXi and ESX libxml2 Buffer Underflow

Disclosed March 28, 2013    Partially Patched

Vulnerability Description:

VMware ESXi 4.1 and 4.0, as well as VMware ESX 4.1 and 4.0 contain a heap-based buffer underrun within libxml2, specifically, the xmlParseAttValueComplex function. This vulnerability may be leveraged by attackers to arbitrarily execute code.

Vendors:

VMware

Vulnerable Software/Devices:

VMware ESXi 4.1 and 4.0
VMware ESX 4.1 and 4.0

Vulnerability Severity:

Medium

Exploit Availability:

N/A

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 18614 - VMware ESX/ESXi Server libxml2 Vulnerability (20130328) - ESXi 5.1
  • 18615 - VMware ESX/ESXi Server libxml2 Vulnerability (20130328) - ESXi 5.0
  • 18616 - VMware ESX/ESXi Server libxml2 Vulnerability (20130328) - ESXi 4.1
  • 18617 - VMware ESX/ESXi Server libxml2 Vulnerability (20130328) - ESXi 4.0
  • 18618 - VMware ESX/ESXi Server libxml2 Vulnerability (20130328) - ESX 4.1/4.0

Mitigation:

Install the available patch for ESXi 5.0 and 5.1; otherwise, no mitigation is currently available, other than to avoid untrusted XML documents.

Links:

CVE(s):

None

Leave a Reply