CVE-2008-2100

Currently unrated

Key Information:

Vendor: Vmware
Status: Fusion; Esx Server; Esxi; Esx
Vendor: CVE Published:; 5 June 2008

Summary

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors.

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://www.vupen.com/english/advisories/2008/1744

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1020200

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 5, 2008
Vulnerability Reserved
May 7, 2008