Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
VMware Products 'vmware-vmx' Information Disclosure Vulnerability (Windows)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is installed with VMWare products and are prone to information disclosure vulnerability.
Insight
Insight
The flaw is due to error in 'virtual networking stack' when interacting between the guest OS and host 'vmware-vmx' process, which allows attackers to obtain sensitive information from memory on the host OS by examining received network packets.
Affected Software
Affected Software
VMware Server 2.x, Vmware Player 3.0 before 3.0.1 build 227600, VMware Player 2.5.x before 2.5.4 build 246459, VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 and VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459
Solution
Solution
Apply updates.