Threat Level: green Handler on Duty: Manuel Humberto Santander Pelaez

SANS ISC: VMware ESXi and ESX address an NFC Protocol Unhandled Exception SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
VMware ESXi and ESX address an NFC Protocol Unhandled Exception

VMware recently released Security Advisorty VMSA-2013-0011 addressing an NFC protocol vulnerability affecting ESXi and EXI (CVE-2013-1661.)  Details are available at https://www.vmware.com/support/support-resources/advisories/VMSA-2013-0011.html

The NFC (Near Field Communication) Protocol is used in tap-to-pay cards and sharing contacts between mobile devices.  This vulnerability exposes the hypervisor to a denial-of-service.

Kevin Liston

292 Posts
ISC Handler
Seems like the NFC is actually Network File Copy rather than Near Field Communication in this case.
TLA soup anyone?
Anonymous
NFC; Network File Copy; is a proprietary VMware protocol used to transfer virtual disk data between hosts, vCenter, and ESXi clients. Nothing to do with Near Field Communications.

http://pubs.vmware.com/vsphere-50/index.jsp?topic=%2Fcom.vmware.vddk.pg.doc_50%2FvddkDataStruct.5.5.html
Mysid

146 Posts

Sign Up for Free or Log In to start participating in the conversation!