Lucene search

K
vmwareVMwareVMSA-2009-0006
HistoryApr 10, 2009 - 12:00 a.m.

VMware Hosted products and patches for ESX and ESXi resolve a critical security vulnerability

2009-04-1000:00:00
www.vmware.com
90

EPSS

0.001

Percentile

31.6%

a. Host code execution vulnerability from a guest operating systemA critical vulnerability in the virtual machine display function might allow a guest operating system to run code on the host.This issue is different from the vulnerability in a guest virtual device driver reported in VMware security advisory VMSA-2009-0005 on 2009-04-03. That vulnerability can cause a potential denial of service and is identified by CVE-2008-4916. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2009-1244 to this issue. The following table lists what action remediates the vulnerability (column 4) if a solution is available.