VMware has updated VMware vCenter Server to address a vulnerability in the Network File Copy (NFC) Protocol.

Apply the missing patch(es).

VMware vCenter, ESXi and ESX NFC protocol memory corruption vulnerability VMware vCenter Server, ESXi and ESX contain a vulnerability in the handling of the Network File Copy (NFC) protocol. To exploit this vulnerability, an attacker must intercept and modify the NFC traffic between vCenter Server and the client or ESXi/ESX and the client. Exploitation of the issue may lead to code execution. To reduce the likelihood of exploitation, vSphere components should be deployed on an isolated management network

VMware vCenter Server 5.1 prior to 5.1.0b VMware vCenter Server 5.0 prior to 5.0 Update 2

Check the build number.

• http://www.vmware.com/security/advisories/VMSA-2013-0003.html

---

Updated on 2015-03-25