CVE-2008-2099

CWE-119 — Buffer Overflow3 documents3 sources

Severity

6.9MEDIUM

EPSS

0.1%

top 78.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware ACE 2 Vmware Vmware Player 2 Vmware Vmware Workstation +1 more

Timeline

PublishedJun 2

Latest updateMay 1

Description

Unspecified vulnerability in VMCI in VMware Workstation 6 before 6.0.4 build 93057, VMware Player 2 before 2.0.4 build 93057, and VMware ACE 2 before 2.0.2 build 93057 on Windows allows guest OS users to execute arbitrary code on the host OS via unspecified vectors.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages4 packages

▶NVDvmware/workstation6.0

▶NVDvmware/vmware_player_24 versions+3

▶NVDvmware/vmware_workstation6.0.1, 6.0.2, 6.0.3+2

▶NVDvmware/ace_22.0, 2.0.1+1

Patches

Patch: www.vmware.com ↗Patch: www.vmware.com ↗

🔴Vulnerability Details

GHSA

GHSA-5xrc-w5gp-hjw5: Unspecified vulnerability in VMCI in VMware Workstation 6 before 6↗2022-05-01

▶

CVEList

CVE-2008-2099: Unspecified vulnerability in VMCI in VMware Workstation 6 before 6↗2008-06-02

▶