CVE-2009-0908 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the ACE shared folders implementation in the VMware Host Guest File System (HGFS) shared folders feature in VMware ACE 2.5.1 and earlier allows attackers to enable a disabled shared folder.

Affected Software

Name	Vendor	Start Version	End Version
Ace	Vmware	*	2.5.1 (including)
Ace	Vmware	1.0 (including)	1.0 (including)
Ace	Vmware	1.0.0 (including)	1.0.0 (including)
Ace	Vmware	1.0.1 (including)	1.0.1 (including)
Ace	Vmware	1.0.2 (including)	1.0.2 (including)
Ace	Vmware	1.0.3 (including)	1.0.3 (including)
Ace	Vmware	1.0.4 (including)	1.0.4 (including)
Ace	Vmware	1.0.5 (including)	1.0.5 (including)
Ace	Vmware	1.0.6 (including)	1.0.6 (including)
Ace	Vmware	1.0.7 (including)	1.0.7 (including)
Ace	Vmware	2.0 (including)	2.0 (including)
Ace	Vmware	2.0.1 (including)	2.0.1 (including)
Ace	Vmware	2.0.2 (including)	2.0.2 (including)
Ace	Vmware	2.0.3 (including)	2.0.3 (including)
Ace	Vmware	2.0.4 (including)	2.0.4 (including)
Ace	Vmware	2.0.5 (including)	2.0.5 (including)
Ace	Vmware	2.5.0 (including)	2.5.0 (including)

References

http://lists.vmware.com/pipermail/security-announce/2009/000054.html
http://seclists.org/fulldisclosure/2009/Apr/0036.html
http://www.securityfocus.com/bid/34373
http://www.securitytracker.com/id?1021975
http://www.vmware.com/security/advisories/VMSA-2009-0005.html
http://www.vupen.com/english/advisories/2009/0944
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6399
http://lists.vmware.com/pipermail/security-announce/2009/000054.html
http://seclists.org/fulldisclosure/2009/Apr/0036.html
http://www.securityfocus.com/bid/34373
http://www.securitytracker.com/id?1021975
http://www.vmware.com/security/advisories/VMSA-2009-0005.html
http://www.vupen.com/english/advisories/2009/0944
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6399

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-0908
CWE	https://cwe.mitre.org/data/definitions/.html