Knowledge Base

The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides

Search the VMware Knowledge Base (KB)

View by Article ID

VMware ESX Server 3.5, Patch ESX350-200803201-UG: Upgrade to the Openwsman Protocol Adapter, Fix for OpenPegasus Management Server (1003695)

Details

Release Date: 10 APR 2008
Document Last Updated: 23 APR 2008

Download Size:
17.7 MB
Download Filename:
ESX350-200803201-UG.zip
md5sum:
55dee9f4e256b996229ff0c9a5f0f72c

Product Versions	ESX Server 3.5
Patch Classification	Update
Supersedes	ESX350-200802414-BG
Requires	ESX350-200803208-UG
Virtual Machine Migration or Reboot Required	Yes
ESX Server Host Reboot Required	Yes
PRs Fixed	217681, 220964
Affected Hardware	N/A
Affected Software	See below.
RPMs Included	cim-smwg-1.0 pegasus-2.5
Related CVE numbers	CVE-2008-0003

Summary

This patch bundle upgrades the Openwsman Protocol Adapter used on the ESX Server host to version 1.5.1. Please see http://www.openwsman.org for more information on this release.

This patch also fixes the stack buffer overflow flaw found in the pre-auth remote (PAM) authentication code in the OpenPegasus CIM management server. An unauthenticated remote user could trigger this flaw and potentially execute arbitrary code with root privileges.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0003 to this issue.

Solution

Symptoms

There are no symptoms available for the updates provided by this patch.

Deployment Considerations

None.

Patch Download and Installation

For information on using VMware Update Manager to automatically update ESX Server 3.5 hosts see the VMware Update Manager Administration Guide for instructions on using Update Manager to download and install patches.

To update ESX Server 3.5 hosts when not using Update Manager, download the most recent patch bundle from http://www.vmware.com/download/vi/vi3_patches_35.html and install the bundle using the the esxupdate tool from the command line of the host. For more information on using esxupdate to manage patches on ESX Server 3.5 hosts, see the ESX Server 3 Patch Management Guide.

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

1 2 3 4 5
0 Ratings

1 2 3 4 5
0 Ratings

Actions

Bookmark Document

KB:

Did this article help you?
This article resolved my issue. This article did not resolve my issue. This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)