7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
42.9%
Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors.
secunia.com/advisories/30556
security.gentoo.org/glsa/glsa-201209-25.xml
securityreason.com/securityalert/3922
securitytracker.com/id?1020200
www.securityfocus.com/archive/1/493080/100/0/threaded
www.securityfocus.com/bid/29552
www.vmware.com/security/advisories/VMSA-2008-0009.html
www.vupen.com/english/advisories/2008/1744
exchange.xforce.ibmcloud.com/vulnerabilities/42872
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5081
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5647