The CPU hardware emulation in VMware Workstation 6.0.5 and earlier and 5.5.8 and earlier; Player 2.0.x through 2.0.5 and 1.0.x through 1.0.8; ACE 2.0.x through 2.0.5 and earlier, and 1.0.x through 1.0.7; Server 1.0.x through 1.0.7; ESX 2.5.4 through 3.5; and ESXi 3.5, when running 32-bit and 64-bit guest operating systems, does not properly handle the Trap flag, which allows authenticated guest OS users to gain privileges on the guest OS.
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
| Link | Tags |
|---|---|
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6309 | signature third party advisory vdb entry |
| http://security.gentoo.org/glsa/glsa-201209-25.xml | third party advisory vendor advisory |
| http://www.securityfocus.com/bid/32168 | third party advisory vdb entry |
| http://lists.vmware.com/pipermail/security-announce/2008/000042.html | vendor advisory mailing list |
| http://www.securitytracker.com/id?1021154 | third party advisory vdb entry |
| http://www.securityfocus.com/archive/1/498138/100/0/threaded | mailing list third party advisory vdb entry |
| http://secunia.com/advisories/32612 | third party advisory |
| http://secunia.com/advisories/32624 | third party advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/46415 | third party advisory vdb entry |
| http://www.vmware.com/security/advisories/VMSA-2008-0018.html | vendor advisory |
| http://www.vupen.com/english/advisories/2008/3052 | third party advisory vdb entry |