CVE-2012-2449 in Workstationinfo

Zusammenfassung (Englisch)

VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x through 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly configure the virtual floppy device, which allows guest OS users to cause a denial of service (out-of-bounds write operation and VMX process crash) or possibly execute arbitrary code on the host OS by leveraging administrative privileges on the guest OS.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

01.05.2012

Veröffentlichung

04.05.2012

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
5324	VMware Workstation/Player/Fusion/ESXi/ESX Floppy Device Pufferüberlauf	119	Nicht definiert	Offizieller Fix	CVE-2012-2449

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Want to know what is going to be exploited?

We predict KEV entries!