Attackers can use an unused display feature as a vector for inserting malicious code into your environment. Disable features that are not in use in your environment.

Procedure

  1. Find the virtual machine in the vSphere Web Client inventory.
    1. Select a data center, folder, cluster, resource pool, or host.
    2. Click the Related Objects tab and click Virtual Machines.
  2. Right-click the virtual machine and click Edit Settings.
  3. Select VM Options.
  4. Click Advanced and click Edit Configuration.
  5. If appropriate, set the following parameters by adding or editing them if appropriate.

    Option

    Description

    svga.vgaonly

    If you set this parameter to TRUE, advanced graphics functions no longer work. Only character-cell console mode will be available. If you use this setting, mks.enable3d has no effect.

    Note:

    Apply this settings only to virtual machines that do not need a virtualized video card.

    mks.enable3d

    Set this parameter to FALSE on virtual machines that do not require 3D functionality.