VMware patches, among other things, ESXi flaw that can be abused by miscreants on the network to hijack hosts

Adobe issues out-of-band patches, too, for Photoshop, Illustrator, InDesign, After Effects, etc

Sysadmins responsible for VMware deployments should test and apply the latest security updates for the software.

In an advisory published this morning, VMware revealed six vulnerabilities affecting its ESXi, Workstation, Fusion, Cloud Foundation, and NSX-T products.

CVE-2020-3992, which tops the list with a 9.8 out of 10 CVSS severity rating, is a use-after-free vuln in the ESXi hypervisor that can be exploited via the network to run malicious code on the target host.

The IT giant said: “A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.”

Stop sign in front of a bush. Image via Shutterstock

Cisco warns VMware code bug can leave hyperconverged tin ‘unrecoverable’


The vulnerability was briefly explained by its discoverers at Trend Micro’s Zero Day Initiative, which warned that “authentication is not required to exploit this vulnerability.”

“The specific flaw exists within the processing of SLP messages," the ZDI team added. "The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the SLP daemon.”

Two of the other vulns affect Workstation (CVE-2020-3981 and CVE-2020-3982), which can be exploited by an admin user in a guest virtual machine to crash or disrupt the underlying host hypervisor.

NSX-T is also said to be vulnerable (CVE-2020-3993) to miscreant-in-the-middle attacks, allowing someone to "compromise the transport node," when the software downloads and installs packages.

The Netherlands’ National Cyber Security Centre reckoned that the potential damage caused through exploiting the vulns would be “medium.” ®

Speaking of security patches... Adobe has issued a bunch of emergency updates for its software on Windows and macOS that should be installed ASAP.

These fixes address code-execution holes in Illustrator, Animate, After Effects, Photoshop, Premiere Pro, and InDesign, which can presumably be exploited by tricking someone into opening a malicious document.

Other applications are patched, too, to close up privilege-escalation flaws and the like.

Similar topics

Other stories you might like

  • VMware customers have watched Broadcom's acquisitions and don't like what they see
    It's not hard to find unpleasant precedents for what might happen to Virtzilla

    VMware customers have seen companies acquired by Broadcom Software emerge with lower profiles, slower innovation, and higher prices - a combination that makes them nervous about the virtualization giant’s future.

    The Register offers that assessment after spending the day at a VMware user group conference in Melbourne, Australia, where we interviewed over a dozen VMware customers to ascertain their reaction to Broadcom’s surprise acquisition of the virtualisation giant. The customers all requested that The Register not use their names, or those of their employers, as none were authorized to speak to the media.

    One of those customers was a sysadmin at a sporting organisation that has decided to drop Symantec products because product evolution has slowed under Broadcom’s ownership. The sysadmin has also heard, from multiple sources including Broadcom partners, that the company uses price hikes to discourage customers it does not want.

    Continue reading
  • Confirmed: Broadcom, VMware agree to $61b merger
    Unless anyone out there can make a better offer. Oh, Elon?

    Broadcom has confirmed it intends to acquire VMware in a deal that looks set to be worth $61 billion, if it goes ahead: the agreement provides for a “go-shop” provision under which the virtualization giant may solicit alternative offers.

    Rumors of the proposed merger emerged earlier this week, amid much speculation, but neither of the companies was prepared to comment on the deal before today, when it was disclosed that the boards of directors of both organizations have unanimously approved the agreement.

    Michael Dell and Silver Lake investors, which own just over half of the outstanding shares in VMware between both, have apparently signed support agreements to vote in favor of the transaction, so long as the VMware board continues to recommend the proposed transaction with chip designer Broadcom.

    Continue reading
  • Broadcom to 'focus on rapid transition to subscriptions' for VMware
    Offers comforting vision for core customers, products, channel – though warns efficiencies are coming

    Broadcom has signaled its $61 billion acquisition of VMware will involve a “rapid transition from perpetual licenses to subscriptions.”

    That's according to Tom Krause, president of the Broadcom Software Group, on Thursday's Broadcom earnings call. He was asked how the semiconductor giant plans to deliver on its guidance that VMware will add approximately $8.5 billion of pro forma EBITDA to Broadcom within three years of the deal closing – significant growth given VMware currently produces about $4.7 billion. And subscriptions was the answer.

    Krause also repeatedly said Broadcom intends to invest in VMware’s key product portfolio and is pleased to be acquiring a sales organization and channel relationships that give it reach Broadcom does not currently enjoy.

    Continue reading

Biting the hand that feeds IT © 1998–2022