VMware has released updates for its ESX Server to fix vulnerabilities in the DHCP Client, DHCP Server, Service Console kernel and Java Runtime Environment (JRE). The security announcement lists a total of 48 CVE entries. The vulnerabilities can be exploited to carry out denial-of-service (DoS) attacks or to compromise systems.
Whilst the bugs in the Service Console kernel and JRE can only be exploited when an attacker has access to the console or console network, attackers can penetrate the ESX Server's DHCP client via a normal LAN.

The link for this article located at H Security is no longer available.