10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.01 Low
EPSS
Percentile
83.8%
The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x
before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the
guest OS accessible through anonymous VIX API calls, which has unknown
impact and attack vectors.
Author | Note |
---|---|
jdstrand | 2.0 only |