6.9

CVE-2008-4915

The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VMwareAce Version >= 1.0 <= 1.0.7
VMwareAce Version >= 2.0 <= 2.0.5
VMwareEsx Version >= 2.5.4 <= 3.5
VMwareEsxi Version3.5
VMwarePlayer Version >= 1.0.0 <= 1.0.8
VMwarePlayer Version >= 2.0 <= 2.0.5
VMwareServer Version >= 1.0 <= 1.0.7
VMwareWorkstation Version >= 5.5 <= 5.5.8
VMwareWorkstation Version >= 6.0 <= 6.0.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.07% 0.227
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/32168
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1021154
Third Party Advisory
VDB Entry