CVE-2008-4915

Name of the Vulnerable Software and Affected Versions VMware Workstation versions 6.0.5 and earlier VMware Workstation versions 5.5.8 and earlier VMware Player versions 2.0.x through 2.0.5 VMware Player versions 1.0.x through 1.0.8 VMware ACE versions 2.0.x through 2.0.5 and earlier VMware ACE versions 1.0.x through 1.0.7 VMware Server versions 1.0.x through 1.0.7 VMware ESX versions 2.5.4 through 3.5 VMware ESXi version 3.5

Description The CPU hardware emulation does not properly handle the Trap flag, allowing authenticated guest OS users to gain privileges on the guest OS when running 32-bit and 64-bit guest operating systems.

Recommendations For VMware Workstation versions 6.0.5 and earlier, update to a version later than 6.0.5. For VMware Workstation versions 5.5.8 and earlier, update to a version later than 5.5.8. For VMware Player versions 2.0.x through 2.0.5, update to a version later than 2.0.5. For VMware Player versions 1.0.x through 1.0.8, update to a version later than 1.0.8. For VMware ACE versions 2.0.x through 2.0.5 and earlier, update to a version later than 2.0.5. For VMware ACE versions 1.0.x through 1.0.7, update to a version later than 1.0.7. For VMware Server versions 1.0.x through 1.0.7, update to a version later than 1.0.7. For VMware ESX versions 2.5.4 through 3.5, update to a version later than 3.5. For VMware ESXi version 3.5, update to a version later than 3.5.