CVE-2008-1392

The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
OR cpe:2.3:a:vmware:ace:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_workstation:6.0.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-03-20 00:44

Updated : 2024-02-04 17:33


NVD link : CVE-2008-1392

Mitre link : CVE-2008-1392

CVE.ORG link : CVE-2008-1392


JSON object : View

Products Affected

vmware

  • player
  • ace
  • vmware_workstation

microsoft

  • windows
CWE
CWE-16

Configuration