VMware Cloud Community
JMButler
Enthusiast
Enthusiast
‎05-11-2009 07:52 AM

CVE-2009-1244 and ESX 3.0.1

Is the vulnerability reported in CVE-2009-1244 applicable to ESX 3.0.1? 3.0.1 isn't listed in the vulnerability report, but I'm wondering if that's because it's reached its end of support date? I thought I had seen a patch released for it for 3.0.1 a while ago, but now I can only find patches for later version of ESX.

Tags (2)
0 Kudos
5 Replies
Troy_Clavell
Immortal
Immortal
‎05-11-2009 07:59 AM

My guess would be that since that general support is EOL for 3.0.x there was no patch. The last patch release for 3.0.1 was back in September of '08

....and according to this, you must be atleast at 3.0.2

0 Kudos
kjb007
Immortal
Immortal
‎05-11-2009 08:27 AM

May not mean anything, but they do list 2.5.5 as affected version as well.

-KjB

VMware vExpert

vExpert/VCP/VCAP vmwise.com / @vmwise -KjB
0 Kudos
Troy_Clavell
Immortal
Immortal
‎05-11-2009 08:29 AM

ESX 2.5.5 ESX not affected

0 Kudos
kjb007
Immortal
Immortal
‎05-11-2009 08:31 AM

Sorry, I meant not affected, but listed.

-KjB

VMware vExpert

vExpert/VCP/VCAP vmwise.com / @vmwise -KjB
0 Kudos
Troy_Clavell
Immortal
Immortal
‎05-11-2009 08:32 AM

Smiley Wink

0 Kudos