QwikSec

Security Database

CVE

CWE

Training

CVE-2008-1340

Published: Mar 20, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.0.x before 6.0.3, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 allows attackers to cause a denial of service (host OS crash) via crafted VMCI calls that trigger "memory exhaustion and memory corruption."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_SREASON

vmware-vmci-dos(41250)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_SECTRACK

http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html

x_refsource_CONFIRM

http://www.vmware.com/support/player2/doc/releasenotes_player2.html

x_refsource_CONFIRM

http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

20080318 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues

mailing-list

x_refsource_BUGTRAQ

[security-announce] 20080317 VMSA-2008-0005 Updated VMware Workstation, VMware Player, VMware Server, VMware ACE, and VMware Fusion resolve critical security issues

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2008-0005.html

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.