VMware产品Descheduled Time Accounting Driver拒绝服务漏洞

Bugraq ID: 35141
CVE ID：CVE-2009-1805
CNCVE ID：CNCVE-20091805

VMware提供包含多个虚拟主机和服务器的解决方案。
VMware Descheduled Time Accounting driver存在一个未明的安全问题，本地攻击者可以利用漏洞对虚拟机进行拒绝服务攻击。
符合如下条件的虚拟机受此漏洞影响：
-虚拟机运行在windows操作系统下。
-VMware Descheduled Time Accounting driver安装在虚拟机上。
-VMware Descheduled Time Accounting服务没有运行在虚拟机上。
目前没有详细漏洞细节提供。

VMWare Workstation 6.5.2
VMWare Workstation 6.5.1
VMWare Workstation 6.5 build 118166
VMWare Workstation 6.0.5 build 109488
VMWare Workstation 6.0.5
VMWare Workstation 6.0.4 build 93057
VMWare Workstation 6.0.4
VMWare Workstation 6.0.3 Build 80004
VMWare Workstation 6.0.3
VMWare Workstation 6.0.2
VMWare Workstation 6.0.1
VMWare Workstation 6.0
VMWare Workstation 6.0.0.45731
VMWare Player 2.5.2
VMWare Player 2.5.1
VMWare Player 2.5 build 118166
VMWare Player 2.0.5 build 109488
VMWare Player 2.0.5
VMWare Player 2.0.4 build 93057
VMWare Player 2.0.4
VMWare Player 2.0.3 Build 80004
VMWare Player 2.0.2
VMWare Player 2.0.1
VMWare Player 2.0
VMWare Fusion 2
VMWare ESXi Server 3.5
VMWare ESX Server 3.0.3
VMWare ESX Server 3.0.2
VMWare ESX Server 3.5
VMWare ACE 2.5.2
VMWare ACE 2.5.1
VMWare ACE 2.5 build 118166
VMWare ACE 2.0.5 build 109488
VMWare ACE 2.0.5
VMWare ACE 2.0.3
VMWare ACE 2.0.2 build 93057
VMWare ACE 2.0.2
VMWare ACE 2.0.1
VMWare ACE 2.0
可参考如下安全公告获得补丁信息：
<a href=“http://www.vmware.com/security/advisories/VMSA-2009-0007.html” target=“_blank”>http://www.vmware.com/security/advisories/VMSA-2009-0007.html</a>