Lucene search
+L

34 matches found

OpenVAS
OpenVAS
added 2008/09/26 12:0 a.m.33 views

VMware Product(s) Local Privilege Escalation Vulnerability

The host is installed with VMWare products that are vulnerable to local privilege escalation vulnerability. OpenVAS Vulnerability Test $Id: gbvmwareprdtsprvescvuln.nasl 4917 2017-01-02 14:43:20Z cfi $ VMware Products Local Privilege Escalation Vulnerability Authors: Chandan S Copyright: Copyright...

7.2CVSS0.3AI score0.00598EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/06/09 12:0 a.m.37 views

VMware VIX API Multiple Buffer Overflow Vulnerabilities

VMware VIX, an application programming interface to manipulate virtual machines is installed on the remote host. The installed version of VMware VIX API is affected by multiple buffer overflow vulnerabilities. Successful exploitation of these issues could allow arbitrary code execution on the hos...

7.2CVSS9.2AI score0.00598EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/06/09 12:0 a.m.29 views

VMware Products Multiple Vulnerabilities (VMSA-2008-0009)

A VMware product installed on the remote host is affected by multiple vulnerabilities. - A local privilege escalation issue in 'HGFS.sys' driver included with the VMware Tools package, could allow an unprivileged guest user to execute arbitrary code on the guest system. It should be noted that...

7.2CVSS9.4AI score0.00598EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2008/06/05 8:32 p.m.34 views

CVE-2008-2100

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS v...

7.2CVSS7.7AI score0.00598EPSS
Exploits0References1
Prion
Prion
added 2008/06/05 8:32 p.m.23 views

Buffer overflow

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS v...

7.2CVSS7.8AI score0.00598EPSS
Exploits0References11Affected Software8
NVD
NVD
added 2008/06/05 8:32 p.m.34 views

CVE-2008-2100

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS v...

7.2CVSS7.7AI score0.00598EPSS
Exploits0References11
CVE
CVE
added 2008/06/05 8:21 p.m.1450 views

CVE-2008-2100

CVE-2008-2100 corresponds to VMware VIX API Multiple Buffer Overflow Vulnerabilities (VMSA-2008-0009). It affects VIX API 1.1.x before 1.1.4 build 93057 across host products (VMware Workstation 5.x/6.x, VMware Player 1.x/2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, ...

7.2CVSS7.3AI score0.00598EPSS
Exploits0References11Affected Software8
Cvelist
Cvelist
added 2008/06/05 8:21 p.m.38 views

CVE-2008-2100

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS v...

7.3AI score0.00598EPSS
Exploits0References11
securityvulns
securityvulns
added 2008/06/05 12:0 a.m.102 views

VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2008-0009 Synopsis: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX,...

9.3CVSS10AI score0.10141EPSS
Exploits4
NVD
NVD
added 2008/03/20 12:44 a.m.15 views

CVE-2008-1392

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors...

10CVSS6.6AI score0.02734EPSS
Exploits0References10
Prion
Prion
added 2008/03/20 12:44 a.m.14 views

Default configuration

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors...

10CVSS6.8AI score0.02734EPSS
Exploits0References10Affected Software3
CVE
CVE
added 2008/03/20 12:0 a.m.61 views

CVE-2008-1392

The CVE-2008-1392 issue affects VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1, where the guest OS console is reachable via anonymous VIX API calls. Impact is explicitly stated as unknown in the sources. Remediation noted in VMSA-2008-0005: the vulne...

10CVSS6.5AI score0.02734EPSS
Exploits0References10Affected Software3
Cvelist
Cvelist
added 2008/03/20 12:0 a.m.24 views

CVE-2008-1392

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors...

6.5AI score0.02734EPSS
Exploits0References10
securityvulns
securityvulns
added 2007/08/27 12:0 a.m.42 views

VMWare poor guest isolation design

I have run across a design issue in VMware's scripting automation API that diminishes VM guest/host isolation in such a manner to facilitate privilege escalation, spreading of malware, and compromise of guest operating systems. VMware's scripting API allows a malicious script on the host machine ...

0.2AI score
Exploits0
Rows per page
Query Builder