6.9

CVE-2008-4915

The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
VMwareAce Version >= 1.0 <= 1.0.7
VMwareAce Version >= 2.0 <= 2.0.5
VMwareEsx Version >= 2.5.4 <= 3.5
VMwareEsxi Version3.5
VMwarePlayer Version >= 1.0.0 <= 1.0.8
VMwarePlayer Version >= 2.0 <= 2.0.5
VMwareServer Version >= 1.0 <= 1.0.7
VMwareWorkstation Version >= 5.5 <= 5.5.8
VMwareWorkstation Version >= 6.0 <= 6.0.5
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.323
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://security.gentoo.org/glsa/glsa-201209-25.xml
Third Party Advisory
http://lists.vmware.com/pipermail/security-announce/2008/000042.html
Vendor Advisory
http://secunia.com/advisories/32624
Third Party Advisory
http://www.securityfocus.com/archive/1/498138/100/0/threaded
Third Party Advisory
VDB Entry
http://www.vmware.com/security/advisories/VMSA-2008-0018.html
Vendor Advisory
http://www.vupen.com/english/advisories/2008/3052
Third Party Advisory
http://secunia.com/advisories/32612
Third Party Advisory
http://www.securityfocus.com/bid/32168
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1021154
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/46415
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6309
Third Party Advisory