6.9

CVE-2008-4915

The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.

Data is provided by the National Vulnerability Database (NVD)
VMwareAce Version >= 1.0 <= 1.0.7
VMwareAce Version >= 2.0 <= 2.0.5
VMwareEsx Version >= 2.5.4 <= 3.5
VMwareEsxi Version3.5
VMwarePlayer Version >= 1.0.0 <= 1.0.8
VMwarePlayer Version >= 2.0 <= 2.0.5
VMwareServer Version >= 1.0 <= 1.0.7
VMwareWorkstation Version >= 5.5 <= 5.5.8
VMwareWorkstation Version >= 6.0 <= 6.0.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.07% 0.227
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/32168
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1021154
Third Party Advisory
VDB Entry