6.8

CVE-2008-1361

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation that causes the authd process to connect to an arbitrary named pipe, a different vulnerability than CVE-2008-1362.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VMwareAce Version1.0
VMwareAce Version1.0.1
VMwareAce Version1.0.2
VMwareAce Version1.0.3
VMwareAce Version1.0.4
VMwareAce Version2.0
VMwarePlayer Version1.0.2
VMwarePlayer Version1.0.3
VMwarePlayer Version1.0.4
VMwarePlayer Version1.0.5
VMwarePlayer Version2.0
VMwarePlayer Version2.0.1
VMwarePlayer Version2.0.2
VMwareServer Version1.0.3
VMwareVmware Server Version1.0.0
VMwareVmware Server Version1.0.1
VMwareVmware Server Version1.0.2
VMwareVmware Server Version1.0.3
VMwareVmware Server Version1.0.4
VMwareVmware Workstation Version5.5.5
VMwareVmware Workstation Version6.0.1
VMwareVmware Workstation Version6.0.2
VMwareWorkstation Version5.5
VMwareWorkstation Version5.5.3_build_34685
VMwareWorkstation Version5.5.3_build_42958
VMwareWorkstation Version5.5.4
VMwareWorkstation Version5.5.4_build_44386
VMwareWorkstation Version6.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.04% 0.09
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.8 3.1 10
AV:L/AC:L/Au:S/C:C/I:C/A:C