7.2

CVE-2008-1362

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by impersonating the authd process through an unspecified use of an "insecurely created named pipe," a different vulnerability than CVE-2008-1361.

Data is provided by the National Vulnerability Database (NVD)
VMwareAce Version1.0
VMwareAce Version2.0
VMwarePlayer Version1.0.2
VMwarePlayer Version1.0.3
VMwarePlayer Version1.0.4
VMwarePlayer Version1.0.5
VMwarePlayer Version2.0
VMwarePlayer Version2.0.1
VMwarePlayer Version2.0.2
VMwareServer Version1.0.3
VMwareVmware Server Version1.0.2
VMwareVmware Server Version1.0.4
VMwareVmware Workstation Version5.5.5
VMwareVmware Workstation Version6.0.1
VMwareVmware Workstation Version6.0.2
VMwareWorkstation Version5.5
VMwareWorkstation Version5.5.3_build_34685
VMwareWorkstation Version5.5.3_build_42958
VMwareWorkstation Version5.5.4
VMwareWorkstation Version5.5.4_build_44386
VMwareWorkstation Version6.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.066
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C