Remote Attack Vulnerability in VMware ActiveX Control
CVE-2008-3695

Currently unrated

Key Information:

Vendor: Vmware
Status: Ace; Player; Server; Workstation
Vendor: CVE Published:; 3 September 2008

Summary

A vulnerability exists within a specific ActiveX control in several versions of VMware Workstation, Player, ACE, and Server software. This flaw could potentially allow an attacker to exploit it remotely, leading to unknown impacts. The vulnerability has been distinctly identified from similar issues outlined in related advisories. Users are encouraged to update their software to the most recent versions to mitigate associated risks.

References

http://www.vmware.com/security/advisories/VMSA-2008-0014....

x_refsource_CONFIRM

http://secunia.com/advisories/31709

third-party-advisoryx_refsource_SECUNIA

http://www.vmware.com/support/server/doc/releasenotes_ser...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 3, 2008
Vulnerability Reserved
Aug 14, 2008