agámi Systems, an industry leader in delivering enterprise network storage systems with live file system replication, breakthrough operational performance and TCO, recently announced that the agámi Information Server 3000 and 6000 series have been certified for VMware ESX Server, a component of VMware Infrastructure, along with the recently released AIS1006 storage system.
The agámi Information Server 3000 & 6000 series, and the new AIS1006 system, are now included in the Storage/SAN Compatibility Guide for VMware ESX Server as a supported storage platform. This compatibility is designed to provide customers with an integrated and jointly supported environment when deploying VMware virtualization technology with a unified storage solution from agámi Systems.
vulnerable software: VMware Workstation 6.0 for Windows, possible some other VMware products as well type of vulnerability: DoS, potential privilege escalation I found a vulnerability in VMware Workstation 6.0 which allows an unprivileged user in the host OS to crash the system and potentially run arbitrary code with kernel privileges. The issue is in the vmstor-60 driver, which is supposed to mount VMware images within the host OS. When sending the IOCTL code FsSetVoleInformation with subcode FsSetFileInformation with a large buffer and underreporting its size to at max 1024 bytes, it will underrun and potentially execute arbitrary code. Security focus
Comments
Post a Comment