Scott's Weblog The weblog of an IT pro specializing in cloud computing, virtualization, and networking, all with an open source view

Security Flaw Found in VMware

Just so the Windows flaws don’t get all the attention, here’s a reasonably new one: a flaw in VMware, the machine virtualization software that is tremendously popular, especially among security professionals. Fortunately, it’s reasonably easy to work around the flaw, and VMware has already released a patch.

This link offers more details on the VMware security flaw, which apparently affects almost all of the VMware products, with the notable exception of ESX Server. VMware’s security advisory also provides complete details and information on how to protect against it, plus a link to download the patch.

VMware users can sidestep the security issue by not using NAT networking for their virtual machines, as pointed out in the security advisory.

While security flaws in Microsoft’s Windows operating system and Internet Explorer web browser get most of the attention these days, all products have them. Users of Linux or Mac OS X like to proclaim their immunity, but no one is immune. This recent vulnerability merely highlights the fact that we must all be vigilant and watchful in order to maintain the security and integrity of our networks and systems.

Metadata and Navigation

Be social and share this post!