← back
CVE-2008-1392

CVE-2008-1392

EPSS 2.7%
The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.vmware.com/pipermail/security-announce/2008/000008.htmlhttp://security.gentoo.org/glsa/glsa-201209-25.xmlhttp://securityreason.com/securityalert/3755https://exchange.xforce.ibmcloud.com/vulnerabilities/41551http://www.securityfocus.com/archive/1/489739/100/0/threadedhttp://www.securityfocus.com/bid/28276http://www.vmware.com/security/advisories/VMSA-2008-0005.htmlhttp://www.vmware.com/support/ace2/doc/releasenotes_ace2.htmlhttp://www.vmware.com/support/player2/doc/releasenotes_player2.htmlhttp://www.vmware.com/support/ws6/doc/releasenotes_ws6.html