Privilege Escalation Vulnerability in VMware Workstation and Player by VMware
CVE-2008-3698

Currently unrated

Key Information:

Vendor: Vmware
Status: Ace; Player; Server; Workstation
Vendor: CVE Published:; 3 September 2008

Summary

An unspecified vulnerability in the OpenProcess function of various VMware products enables local host operating system users to elevate their privileges. This security flaw affects multiple versions of VMware Workstation, Player, and ACE, allowing attackers to exploit unknown vectors and gain unauthorized access to host OS resources, potentially leading to significant security breaches.

References

http://www.vmware.com/security/advisories/VMSA-2008-0014....

x_refsource_CONFIRM

http://www.securityfocus.com/bid/30936

vdb-entryx_refsource_BID

http://www.vmware.com/support/server/doc/releasenotes_ser...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 3, 2008
Vulnerability Reserved
Aug 14, 2008