Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] VMSA-2006-0002 - VMware Server sensitive information l

from [VMware Security Team] Network Security [Permanent Link]
Subject: [Full-disclosure] VMSA-2006-0002 - VMware Server sensitive information lifetime issue
Date: Thu, 01 Jun 2006 19:30:42 -0700 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------
                   VMware Security Advisory

Advisory ID:       VMSA-2006-0002
Synopsis:          VMware Server sensitive information lifetime issue
Advisory URL:      
http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2124
Issue date:        2006-06-01
Updated on:        2006-06-01
CVE Name:          CVE-2006-2662
Bugzilla Number:   pr98108
- -------------------------------------------------------------------

1. Summary:

VMware Server doesn't limit the lifetime of sensitive data.  

VMware has rated the severity of this issue as a Priority 3 issue 
according to Vmware's Security Response Policy.

2. Relevant release:

VMware Server prior to RC-1.

3. Problem description:

When a console connection is made using VMware Server, user 
credentials are kept in memory.  In order for the attacker to 
obtain information, they must have local access to the system 
and read access to the memory, or access to memory crash 
information.

This is only a danger if the attacker already has privileged 
access to your system.

The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2006-2662 to this issue.  

4. Solution:

Upgrade to the latest packages: http://www.vmware.com/download/server/

7. References:

The VMware Server product page at:
http://www.vmware.com/products/server/

Understanding Data Lifetime via Whole System Simulation at:
http://www.stanford.edu/~blp/papers/taint.pdf

8. Acknowledgments

VMware would like to thank Bart Vanautgaerden for reporting this issue.

9. Contact:

http://www.vmware.com/security

The VMware Security Response Policy
http://www.vmware.com/support/policies/security_response.html

Copyright 2006 VMware Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFEf5icLsZLrftG15MRAiV/AJsHZqGGq9yzH7KHFZtRgVXJQnRh5gCg1u76
V9M5Q2tIS8dcycQsjO8Ejjc=
=s5UB
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] VMSA-2006-0002 - VMware Server sensitive information lifetime issue, VMware Security Team <=
Previous by Date:  RE: Internet explorer Vulnerbility, Peter Kruse
Next by Date:  Re: PHPSimple Choose v0.3, prattmic
Previous by Thread:  Forensic memory dumping intricacies - PhysicalMemory, DD, and caching issues, Arne Vidstrom
Next by Thread:  Re: PHPSimple Choose v0.3, prattmic
Indexes:  [Date] [Thread] [Top] [All Lists]