Unspecified vulnerability in vmci.sys in the Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, and VMware Server 2.0.x before 2.0.1 build 156745 allows local users to gain privileges via unknown vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ace | Vmware | * | * |
| Ace | Vmware | 1.0 (including) | 1.0 (including) |
| Ace | Vmware | 1.0.0 (including) | 1.0.0 (including) |
| Ace | Vmware | 1.0.1 (including) | 1.0.1 (including) |
| Ace | Vmware | 1.0.2 (including) | 1.0.2 (including) |
| Ace | Vmware | 1.0.3 (including) | 1.0.3 (including) |
| Ace | Vmware | 1.0.3_build_54075 (including) | 1.0.3_build_54075 (including) |
| Ace | Vmware | 1.0.4 (including) | 1.0.4 (including) |
| Ace | Vmware | 1.0.5 (including) | 1.0.5 (including) |
| Ace | Vmware | 1.0.6 (including) | 1.0.6 (including) |
| Ace | Vmware | 1.0.7 (including) | 1.0.7 (including) |
| Ace | Vmware | 2.0 (including) | 2.0 (including) |
| Ace | Vmware | 2.0.1 (including) | 2.0.1 (including) |
| Ace | Vmware | 2.0.1_build_55017 (including) | 2.0.1_build_55017 (including) |
| Ace | Vmware | 2.0.2 (including) | 2.0.2 (including) |
| Ace | Vmware | 2.0.3 (including) | 2.0.3 (including) |
| Ace | Vmware | 2.0.4 (including) | 2.0.4 (including) |
| Ace | Vmware | 2.0.5 (including) | 2.0.5 (including) |
| Ace | Vmware | 2.5.0 (including) | 2.5.0 (including) |
| Ace | Vmware | 2.5.1 (including) | 2.5.1 (including) |
References
- http://lists.vmware.com/pipermail/security-announce/2009/000054.html
- http://seclists.org/fulldisclosure/2009/Apr/0036.html
- http://www.securityfocus.com/bid/34373
- http://www.securitytracker.com/id?1021976
- http://www.vmware.com/security/advisories/VMSA-2009-0005.html
- http://www.vupen.com/english/advisories/2009/0944
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5471
- http://lists.vmware.com/pipermail/security-announce/2009/000054.html
- http://seclists.org/fulldisclosure/2009/Apr/0036.html
- http://www.securityfocus.com/bid/34373
- http://www.securitytracker.com/id?1021976
- http://www.vmware.com/security/advisories/VMSA-2009-0005.html
- http://www.vupen.com/english/advisories/2009/0944
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5471