VMware has identified and fixed seven security bugs in the free version of its hypervisor, which could let hackers launch denial-of-service attacks, change user privileges and forge RSA key signatures.
VMware identified the problems in VMware Server, the company’s free server virtualisation software, and fixed them in newly released version 1.0.5. VMware first reported the problems Monday, according to a Secunia security advisory, which classified the vulnerabilities as "less critical." VMware conducted an internal security audit that found an insecurely created object that malicious users could exploit to "escalate privileges or create a denial-of-service attack," VMware states on its website. Techworld.com - VMware fixes security bugs
From around the Web
- Users not patching third party apps
- Mozilla patches 12 Firefox bugs, a third of them critical
- IE 7 and 8 Default Security Leaves Intranets At Risk
- Microsoft ships fixes for Excel, WordPad malware attacks
- 15 Firefox addons for Web developers
- Windows 7 will nag users 29% less often, Microsoft claims
- Vista7 more secure than Linux and Mac OS X
- Conficker self updates, launches false infection alert
- SSH server attacks resurface
- Hacking Tools & Techniques and How to Protect Your Network from Them
- Microsoft Black Tuesday: Microsoft finally fixes Excel zero day, plus more
- Conficker self updates, launches false infection alert
- Conficker reprogrammed for new attack run
- Rogue security software a rising threat
- Further Windows 7 features revealed