CVE-2008-2100
05.06.2008, 20:32
Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors.Enginsight
| Vendor | Product | Version |
|---|---|---|
| vmware | ace | 1.0 ≤ 𝑥 ≤ 1.0.5 |
| vmware | ace | 2.0 ≤ 𝑥 ≤ 2.0.3 |
| vmware | esx_server | 3.0 |
| vmware | esx_server | 3.5 |
| vmware | esxi | 3.5 |
| vmware | fusion | 𝑥 ≤ 1.1.1 |
| vmware | player | 1.0.0 ≤ 𝑥 ≤ 1.0.6 |
| vmware | player | 2.0 ≤ 𝑥 ≤ 2.0.3 |
| vmware | server | 𝑥 ≤ 1.0.5 |
| vmware | workstation | 5.5 ≤ 𝑥 ≤ 5.5.6 |
| vmware | workstation | 6.0 ≤ 𝑥 ≤ 6.0.3 |
| vmware | esx | 2.5.4 |
| vmware | esx | 2.5.5 |
| vmware | esx | 3.0.0 |
| vmware | esx | 3.0.1 |
| vmware | esx | 3.0.2 |
| vmware | esx | 3.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References