Computer Security

VMWare multiple security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



VMWare multiple security vulnerabilities
updated since 05.06.2008
Published:06.06.2008
Source:BUGTRAQ
SecurityVulns ID:9055
Type:local
Level:5/10
Description:Multiple privilege escalation in guest OS.
Affected:VMWARE : VMware Workstation 5.5
 VMWARE : VMware Player 1.0
 VMWARE : VMware Server 1.0
 VMWARE : VMware ACE 1.0
 VMWARE : VMWare Workstation 6.0
 VMWARE : VMware Player 2.0
 VMWARE : VMWare ACE 2.0
 VMWARE : VMware Fusion 1.1
 VMWARE : VMware ESXi 3.5
 VMWARE : VMware ESXi 3.0
 VMWARE : VMware ESXi 2.5
CVE:CVE-2008-2097 (Buffer overflow in the openwsman management service in VMware ESXi 3.5 and ESX 3.5 allows remote authenticated users to gain privileges via an "invalid Content-Length.")
 CVE-2008-0967
 CVE-2007-5671
Original documentdocumentVMWARE, iDefense Security Advisory 06.04.08: VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability (05.06.2008)
 documentIDEFENSE, iDefense Security Advisory 06.04.08: VMware Tools HGFS Local Privilege Escalation Vulnerability (05.06.2008)
 documentVMWARE, VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues (05.06.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server