CVE-2008-1392

Published: 20 March 2008

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors.

Notes

Author	Note
jdstrand	2.0 only

Priority

Status

Package	Release	Status
vmware-player Launchpad, Ubuntu, Debian	dapper	Ignored
	edgy	Ignored
	feisty	Ignored
	gutsy	Does not exist
	upstream	Needs triage

References

https://www.cve.org/CVERecord?id=CVE-2008-1392
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›