CVE-2008-2100

CWE-119 — Buffer Overflow3 documents3 sources

Severity

7.2HIGH

EPSS

0.2%

top 64.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware ACE Vmware Fusion Vmware Player +5 more

Timeline

PublishedJun 5

Latest updateMay 1

Description

Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages8 packages

▶NVDvmware/fusion1.1.1

▶NVDvmware/player1.0.0 — 1.0.6+1

▶NVDvmware/server1.0.5

▶NVDvmware/workstation5.5 — 5.5.6+1

▶NVDvmware/esxi3.5

🔴Vulnerability Details

GHSA

GHSA-hqvv-32vg-gx63: Multiple buffer overflows in VIX API 1↗2022-05-01

▶

CVEList

CVE-2008-2100: Multiple buffer overflows in VIX API 1↗2008-06-05

▶