Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-1392
HistoryMar 20, 2008 - 12:00 a.m.

CVE-2008-1392

2008-03-2000:00:00
ubuntu.com
ubuntu.com
9

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.8%

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x
before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the
guest OS accessible through anonymous VIX API calls, which has unknown
impact and attack vectors.

Notes

Author Note
jdstrand 2.0 only

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.8%