CVE-2008-1361

Published: 20 March 2008

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation that causes the authd process to connect to an arbitrary named pipe, a different vulnerability than CVE-2008-1362.

Notes

Author	Note
jdstrand	Windows only

Priority

Status

Package	Release	Status
vmware-player Launchpad, Ubuntu, Debian	dapper	Ignored
	edgy	Ignored
	feisty	Ignored
	gutsy	Does not exist
	upstream	Needs triage
vmware-server Launchpad, Ubuntu, Debian	dapper	Does not exist
	edgy	Does not exist
	feisty	Ignored
	gutsy	Ignored
	upstream	Needs triage

References

http://lists.vmware.com/pipermail/security-announce/2008/000008.html
https://www.cve.org/CVERecord?id=CVE-2008-1361
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›