CVE-2012-2449 in Workstation
요약 (영어)
VMware Workstation 8.x before 8.0.3, VMware Player 4.x before 4.0.3, VMware Fusion 4.x through 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 do not properly configure the virtual floppy device, which allows guest OS users to cause a denial of service (out-of-bounds write operation and VMX process crash) or possibly execute arbitrary code on the host OS by leveraging administrative privileges on the guest OS.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
예약하다
2012. 05. 01.
공개
2012. 05. 04.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 5324 | VMware Workstation/Player/Fusion/ESXi/ESX Floppy Device 메모리 손상 | 119 | 정의되지 않음 | 공식 수정 | CVE-2012-2449 |