Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-1362

Опубликовано: 20 мар. 2008
Источник: nvd
CVSS2: 7.2
EPSS Низкий

Описание

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by impersonating the authd process through an unspecified use of an "insecurely created named pipe," a different vulnerability than CVE-2008-1361.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:vmware:ace:1.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:ace:2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:server:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_server:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_server:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_workstation:5.5.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_workstation:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:vmware_workstation:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:5.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:5.5.3_build_34685:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:5.5.3_build_42958:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:5.5.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:5.5.4_build_44386:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 10%
0.00035
Низкий

7.2 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2008-1362

ubuntu
больше 17 лет назад

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by impersonating the authd process through an unspecified use of an "insecurely created named pipe," a different vulnerability than CVE-2008-1361.

debian логотип

CVE-2008-1362

debian
больше 17 лет назад

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware P ...

github логотип

GHSA-3wg9-7hfj-6cp9

github
больше 3 лет назад

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges or cause a denial of service by impersonating the authd process through an unspecified use of an "insecurely created named pipe," a different vulnerability than CVE-2008-1361.

EPSS

Процентиль: 10%
0.00035
Низкий

7.2 High

CVSS2

Дефекты

CWE-264