Privilege Escalation in VMware Workstation and Player Products
CVE-2008-4915

Currently unrated

Key Information:

Vendor: Vmware
Status: Esxi; Workstation; Player; Ace
Vendor: CVE Published:; 10 November 2008

Summary

In VMware Workstation and other associated products, a flaw exists in the CPU hardware emulation when handling the Trap flag. This vulnerability enables authenticated users on guest operating systems to escalate their privileges, potentially compromising system integrity. It affects a range of VMware products across several versions, emphasizing the need for timely updates and patches to mitigate potential exploitation.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://www.securityfocus.com/bid/32168

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 10, 2008
Vulnerability Reserved
Nov 3, 2008