Critical VMWare Security Advisory VMSA-2017-0004.3


Extremely [H]
Oct 29, 2000
If you use VMWare's DaaS, vCenter, vROps or Hyperic, right about now would be a good time to apply the latest patch for VMware Security Advisory VMSA-2017-0004.3, which allows for remote code execution and complete system compromise. Personally I wouldn't want to leave vCenter 6.0 or 6.5 unpatched right now.

"As you can see, the vulnerability hits some of VMware’s most popular virtualization and virtual desktop products. Remote code execution vulnerabilities are generally must-patch issues as they can enable malicious parties to remotely take over and control a server."
I'm sure my head VM architect guy will be thrilled. It's hard enough to get current patches applied due to outage windows etc.

Yay, for once being behind the curve has advantages!

Procrastination always pays off in the end. Or maybe the week after. :)