PT-2008-2973 · Vmware · Vmware Player+2

Publicado

2008-03-20

Atualizado

2018-10-11

CVE-2008-1392

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions VMware Workstation version 6.0.2 VMware Player versions 2.0.x through 2.0.2 VMware ACE versions 2.0.x through 2.0.0

Description The default configuration of the affected software makes the console of the guest OS accessible through anonymous VIX API calls. The impact and attack vectors of this issue are unknown.

Recommendations For VMware Workstation version 6.0.2, update to a version that addresses this issue. For VMware Player versions 2.0.x through 2.0.2, update to version 2.0.3 or later. For VMware ACE versions 2.0.x through 2.0.0, update to version 2.0.1 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-16

Identificadores relacionados

CVE-2008-1392

Produtos afetados

Vmware Ace

Vmware Player

Vmware Workstation

PT-2008-2973 · Vmware · Vmware Player+2

CVE-2008-1392

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12