▶ 安全研究

安全漏洞

主页安全研究安全漏洞

VMware ESXi及ESX NFC协议处理远程拒绝服务漏洞

2013-09-04 08:00:20

SSV-AppDir: VMWare漏洞
发布时间: 2013-08-29 (GMT+0800)

漏洞版本:

VMWare ESX 4.1
VMWare ESX 4.0
VMWare ESXi 5.0
VMWare ESXi 4.1
VMWare ESXi 4.0

漏洞描述:

BUGTRAQ  ID: 62077
CVE(CAN) ID: CVE-2013-1661

VMware ESX Server是为适用于任何系统环境的企业级虚拟计算机软件

ESXi 4.0, 4.1, 5.0, 5.1、ESX 4.0, 4.1 在处理NFC协议时存在远程拒绝服务漏洞,要利用此漏洞,攻击者需要截获并修改ESXi/ESX和客户端之间的NFC流量,利用成功后可导致拒绝服务
<* 参考
https://www.vmware.com/support/support-resources/advisories/VMSA-2013-0011.html
*>

子辉安全建议:

厂商补丁:

VMWare
------
VMWare已经为此发布了一个安全公告(VMSA-2013-0011)以及相应补丁:
VMSA-2013-0011:VMware ESXi and ESX address an NFC Protocol Unhandled Exception
链接:https://www.vmware.com/support/support-resources/advisories/VMSA-2013-0011.html

补丁下载:


      ------------
      https://www.vmware.com/patchmgr/download.portal
      ESXi 5.1
      --------
      File: ESXi510-201307001.zip
      md5sum: 24065646806665d176a373bf9a861f98
      sha1sum: c07a9361df8d9adcd2ff1f8e949d41fbeb091f0f
      http://kb.vmware.com/kb/2052151
      ESXi510-201307001 contains ESXi510-201307101-SG
      ESXi 5.0
      ------------------
      File: ESXi500-201308001.zip
      md5sum: 90d20a6921f35ededfc5021afeedc63f
      sha1sum:e739a671ab0bc9820fef90dc7ca4445eeb6a056d
      http://kb.vmware.com/kb/2053139
      ESXi500-201308001 contains ESXi500-201308101-SG
      ESXi 4.1
      ------------------
      File: ESXi410-201304001.zip
      md5sum: 9ce63bcacb3412fc1c8a6a8c47ac6af6
      sha1sum: 241603ef6b856e573a62fe27da039c8fffe54b1d
      http://kb.vmware.com/kb/2045255
      ESXi410-201304001 contains ESXi410-201304401-SG
      ESXi 4.0
      ------------------
      File: ESXi400-201305001.zip
      md5sum: 065d3fa4b0f52dd38c2bd92e5bfc5580
      sha1sum: 1f3cab25a144746372d86071a47e569c439e276a
      http://kb.vmware.com/kb/2044246
      ESXi400-201305001 contains ESXi400-201305401-SG
      ESX 4.1
      --------
      File: ESX410-201304001.zip
      md5sum: df9ef1d25f383a12d2fbc47cdc5f55d2
      sha1sum: e49068da7cf7e0ada57c4604cbc9ba253c03e3a0
      http://kb.vmware.com/kb/2045251
      ESX410-201304001 contains ESX410-201304401-SG
      ESX 4.0
      -------
      File: ESX400-201305001.zip
      md5sum: c9ac91d3d803c7b7cb9df401c20b91c0
      sha1sum: 7f5cef274c709248daa56d8c0e6fcc1ba86ae411
      http://kb.vmware.com/kb/2044242
      ESX400-201305001 contains ESX400-201305401-SG