Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4917

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-4917
Last Modified 14 May 2013 10:47:20
Published 08 Dec 2008 07:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-4917

Summary

Unspecified vulnerability in VMware Workstation 5.5.8 and earlier, and 6.0.5 and earlier 6.x versions; VMware Player 1.0.8 and earlier, and 2.0.5 and earlier 2.x versions; VMware Server 1.0.9 and earlier; VMware ESXi 3.5; and VMware ESX 3.0.2 through 3.5 allows guest OS users to have an unknown impact by sending the virtual hardware a request that triggers an arbitrary physical-memory write operation, leading to memory corruption.

Vulnerable Systems

Application

  • Vmware Esx 3.0.2

  • Vmware Esx 3.0.3

  • Vmware Esx 3.5

  • Vmware Esxi 3.5

  • Vmware Player 1.0

  • Vmware Player 1.0.0

  • Vmware Player 1.0.1

  • Vmware Player 1.0.2

  • Vmware Player 1.0.3

  • Vmware Player 1.0.4

  • Vmware Player 1.0.5

  • Vmware Player 1.0.6

  • Vmware Player 1.0.7

  • Vmware Player 1.0.8

  • Vmware Player 2.0

  • Vmware Player 2.0.1

  • Vmware Player 2.0.2

  • Vmware Player 2.0.3

  • Vmware Player 2.0.4

  • Vmware Player 2.0.5

  • Vmware Server 1.0

  • Vmware Server 1.0.1

  • Vmware Server 1.0.2

  • Vmware Server 1.0.3

  • Vmware Server 1.0.4

  • Vmware Server 1.0.5

  • Vmware Server 1.0.6

  • Vmware Server 1.0.7

  • Vmware Server 1.0.8

  • Vmware Server 1.0.9

  • Vmware Workstation 5.0

  • Vmware Workstation 5.5.0

  • Vmware Workstation 5.5.1

  • Vmware Workstation 5.5.2

  • Vmware Workstation 5.5.3

  • Vmware Workstation 5.5.4

  • Vmware Workstation 5.5.5

  • Vmware Workstation 5.5.6

  • Vmware Workstation 5.5.7

  • Vmware Workstation 6.0.1

  • Vmware Workstation 6.0.2

  • Vmware Workstation 6.0.3

  • Vmware Workstation 6.0.4

  • Vmware Workstation 6.0.5


References

SECUNIA - 32965

CONFIRM - http://kb.vmware.com/kb/1006980

BUGTRAQ - 20081203 Re: VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2

BUGTRAQ - 20081203 VMSA-2008-0019 VMware Hosted products and patches for ESX and ESXi resolve a critical security issue and update bzip2

SECTRACK - 1021301

SECTRACK - 1021300

CONFIRM - http://kb.vmware.com/kb/1006986

BID - 32597

GENTOO - GLSA-201209-25


Last Updated: 27 May 2016 11:01:52