CVE-2008-2098

Heap-based buffer overflow in the VMware Host Guest File System (HGFS) in VMware Workstation 6 before 6.0.4 build 93057, VMware Player 2 before 2.0.4 build 93057, VMware ACE 2 before 2.0.2 build 93057, and VMware Fusion before 1.1.2 build 87978, when folder sharing is used, allows guest OS users to execute arbitrary code on the host OS via unspecified vectors.

Link	Resource
http://www.vmware.com/security/advisories/VMSA-2008-0008.html
http://www.vupen.com/english/advisories/2008/1707/references	Vendor Advisory
http://secunia.com/advisories/30476	Vendor Advisory
http://www.securitytracker.com/id?1020148
http://security.gentoo.org/glsa/glsa-201209-25.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/42753
http://www.securityfocus.com/archive/1/492831/100/0/threaded

Configuration 1

cpe:2.3:a:vmware:vmware_player_2:2.01:*:*:*:*:*:*:* cpe:2.3:a:vmware:fusion:1.1:*:*:*:*:*:*:* cpe:2.3:a:vmware:fusion:1.1.1:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_player_2:2.03:*:*:*:*:*:*:* cpe:2.3:a:vmware:workstation:6.0:*:*:*:*:*:*:* cpe:2.3:a:vmware:ace_2:2.01:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_player_2:2.0:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_workstation:6.0.2:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_player_2:2.02:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_workstation:6.0.1:*:*:*:*:*:*:* cpe:2.3:a:vmware:ace_2:2.0:*:*:*:*:*:*:* cpe:2.3:a:vmware:vmware_workstation:6.03:*:*:*:*:*:*:*

---

Published : 2008-06-02 09:30

Updated : 2018-10-11 08:39

---

NVD link : CVE-2008-2098

Mitre link : CVE-2008-2098

No products.

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer