VMware Products Multiple Vulnerabilities (Win) Apr09 Network Vulnerability

Summary

The host is installed with VMWare products and are prone to Multiple Vulnerabilities.

Impact

Successful exploitation will let the attacker cause denial of service, local password information disclosure, arbitrary code execution, access to shared resources or heap overflow. Impact Level: System/Application

Solution

Upgrade your VMWares according to the below link. http://lists.vmware.com/pipermail/security-announce/2009/000054.html

Insight

For detailed information of the multiple vulnerabilities please refer to the links provided in references.

Affected

VMware Workstation 6.5.1 and prior VMware Player 2.5.1 and prior VMware Server 2.0.1 and prior

References

http://lists.vmware.com/pipermail/security-announce/2009/000055.html
http://www.vmware.com/security/advisories/VMSA-2009-0005.html
http://www.vmware.com/security/advisories/VMSA-2009-0006.html
http://www.vupen.com/english/advisories/2009/0944

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-3761, CVE-2008-4916, CVE-2009-0177, CVE-2009-0909, CVE-2009-0910, CVE-2009-1146, CVE-2009-1147, CVE-2009-1244
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)
Apple QuickTime Multiple Vulnerabilities - Jan09 (Win)
ActFax LPD/LPR Server Denial of Service Vulnerability
CesarFTP MKD Command Buffer Overflow
cfengine AuthenticationDialogue vulnerability

Take action and discover your vulnerabilities