The VMware Knowledge Base provides support solutions, error messages and troubleshooting guides
VMware ESX 3.5, Patch ESX350-201002404-SG: Security update to BIND (1017665)
Release Date: February 16, 2010
Summaries and Symptoms
This patch includes an updated BIND package that fixes the security issue in the ESX service console. A flaw was found in the way BIND handles dynamic update message packets containing the ANY record type. A remote attacker could use this flaw to send a specially crafted dynamic update packet that could cause a denial-of-service. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2009-0696 to this issue.
None beyond the required patch bundles and reboot information listed in the table, above.
Patch Download and Installation
See the vCenter Update Manager Administration Guide for instructions on using Update Manager to download and install patches to automatically update ESX 3.5 hosts.
To update ESX 3.5 hosts without using Update Manager, download the most recent patch bundle from http://www.vmware.com/download/vi/vi3_patches_35.html and install the bundle using esxupdate from the command line of the host. For more information, see the ESX Server 3 Patch Management Guide.
Request a Product Feature
To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.