Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3367
HistoryJun 03, 2008 - 12:00 a.m.

VMware VMCI功能任意代码执行漏洞

2008-06-0300:00:00
Root
www.seebug.org
17

0.001 Low

EPSS

Percentile

36.2%

JSON

BUGTRAQ ID: 29443
CVE(CAN) ID: CVE-2008-2099

VMWare是一款虚拟PC软件,允许在一台机器上同时运行两个或多个Windows、DOS、LINUX系统。

VMCI是VMware产品中的一个可选功能,允许虚拟机之间相互通讯。如果启用了VMCI功能的话,Guest就可以在主机上以vmx进程的权限执行任意指令。这个漏洞仅影响运行在Windows主机上的系统。

VMWare VMWare Workstation 6.x
VMWare ACE 2.x
VMWare Player 2.x
VMWare Fusion 1.x
VMWare

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://www.vmware.com/download/” target=“_blank”>http://www.vmware.com/download/</a>

Related

prion 1
cve 1
ubuntucve 1
cvelist 1
openvas 2
securityvulns 2
vmware 1
nessus 1
prion
prion
Code injection
2008-06-02 21:30:00
cve
cve
CVE-2008-2099
2008-06-02 21:30:00
ubuntucve
ubuntucve
CVE-2008-2099
2008-06-02 00:00:00
cvelist
cvelist
CVE-2008-2099
2008-06-02 14:00:00
openvas
openvas
VMCI/HGFS VmWare Code Execution Vulnerability (Windows)
2008-09-25 00:00:00
VMCI/HGFS VmWare Code Execution Vulnerability (VMSA-2008-0008) - Windows
2008-09-25 00:00:00
securityvulns
securityvulns
VMWare buffer overflow
2008-05-31 00:00:00
VMSA-2008-0008 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion resolve critical security issues
2008-05-31 00:00:00
vmware
vmware
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion resolve critical security issues
2008-05-30 00:00:00
nessus
nessus
VMware Products Multiple Vulnerabilities (VMSA-2008-0008)
2008-06-03 00:00:00

0.001 Low

EPSS

Percentile

36.2%

JSON
Related for SSV:3367
prion1cve1ubuntucve1cvelist1openvas2securityvulns2vmware1nessus1