CVE-2008-1340
First published: Thu Mar 20 2008(Updated: )
Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.0.x before 6.0.3, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 allows attackers to cause a denial of service (host OS crash) via crafted VMCI calls that trigger "memory exhaustion and memory corruption."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware ACE | =1.0 | |
| VMware Player | =2.0.1 | |
| VMware Player | =2.0.2 | |
| VMware Player | =1.0.2 | |
| VMware ACE | =2.0 | |
| VMware Workstation | =5.5.4_build_44386 | |
| VMware Workstation | =6.0 | |
| VMware Workstation | =5.5.3_build_34685 | |
| VMware VMware Workstation | =5.5.5 | |
| VMware Player | =1.0.3 | |
| VMware Workstation | =5.5.3_build_42958 | |
| VMware Workstation | =5.5 | |
| Vmware Vmware Server | =1.0.4 | |
| VMware Player | =1.0.4 | |
| VMware VMware Workstation | =6.0.2 | |
| VMware Player | =1.0.5 | |
| VMware Server | =1.0.3 | |
| Vmware Vmware Server | =1.0.2 | |
| VMware Player | =2.0 | |
| VMware VMware Workstation | =6.0.1 | |
| VMware Workstation | =5.5.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.vmware.com/pipermail/security-announce/2008/000008.html
- http://www.vmware.com/security/advisories/VMSA-2008-0005.html
- http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html
- http://www.vmware.com/support/player2/doc/releasenotes_player2.html
- http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
- http://www.securityfocus.com/bid/28276
- http://securitytracker.com/id?1019624
- http://securityreason.com/securityalert/3755
- http://www.vupen.com/english/advisories/2008/0905/references
- http://www.securityfocus.com/bid/28289
- http://security.gentoo.org/glsa/glsa-201209-25.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41250
- http://www.securityfocus.com/archive/1/489739/100/0/threaded
- agent/type
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/event
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/vmware
- canonical/vmware ace
- version/vmware ace/1.0
- canonical/vmware player
- version/vmware player/2.0.1
- version/vmware player/2.0.2
- version/vmware player/1.0.2
- version/vmware ace/2.0
- canonical/vmware workstation
- version/vmware workstation/5.5.4_build_44386
- version/vmware workstation/6.0
- version/vmware workstation/5.5.3_build_34685
- canonical/vmware vmware workstation
- version/vmware vmware workstation/5.5.5
- version/vmware player/1.0.3
- version/vmware workstation/5.5.3_build_42958
- version/vmware workstation/5.5
- canonical/vmware vmware server
- version/vmware vmware server/1.0.4
- version/vmware player/1.0.4
- version/vmware vmware workstation/6.0.2
- version/vmware player/1.0.5
- canonical/vmware server
- version/vmware server/1.0.3
- version/vmware vmware server/1.0.2
- version/vmware player/2.0
- version/vmware vmware workstation/6.0.1
- version/vmware workstation/5.5.4