Search

Search for words used in entries on this website

Enter the words[s] to search for here:

Sponsors

Major security vulnerability found in VMware products

A new major security issue was found and communicated to VMware before posting on SecurityFocus (as ethical bug hunting should always be).

The flaw permits a malicious guest OS configured to use VMware NAT networking (VMnet8) to execute arbitrary code on host OS.
VMware products afflicted are Workstation 5.5, GSX Server 3.2, ACE 1.0.1 and Player 1.0.0.

To track the issue monitor the related VMware Knowledge Base article.

While the VMware Player is just released as 1.0.1 to fix the vulnerability, VMware also released updated bits for Workstation (5.5.1 b19175), GSX (3.2.1 (b19281) and ACE (1.0.2 (b19206).

Name:			Remember personal info? Yes No
Email:
URL:
Comment:		Emoticons / Textile
Before sending a comment, you have to correctly answer a simple question you know the answer to. This is a countermeasure against automated spam bots. What are the first four letters of Techlog?     ( Register your username / Log in )
Notify:		Yes, send me email when someone replies.
Hide email:		Yes, hide my email address.
Small print: All html tags except <b> and <i> will be removed from your comment. You can make links by just typing the url or mail-address.