CVE-2009-1244
Last modified
CVE-2009-1244 is a vulnerability of currently unknown severity. Unspecified vulnerability in the virtual machine display function in VMware Workstation 6.5.1 and earlier; VMware Player 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 1.x before 1.0.9 build 156507 and 2.x before 2.0.1 build 156745; VMware Fusion before 2.0.4 build 159196; VMware ESXi 3.5; and VMware ESX 3.0.2, 3.0.3, and 3.5 allows guest OS users to execute arbitrary code on the host OS via unknown vectors, a different vulnerability than CVE-2008-4916.. EPSS estimates a 2.00% chance of exploitation in the next 30 days.
Description
Unspecified vulnerability in the virtual machine display function in VMware Workstation 6.5.1 and earlier; VMware Player 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 1.x before 1.0.9 build 156507 and 2.x before 2.0.1 build 156745; VMware Fusion before 2.0.4 build 159196; VMware ESXi 3.5; and VMware ESX 3.0.2, 3.0.3, and 3.5 allows guest OS users to execute arbitrary code on the host OS via unknown vectors, a different vulnerability than CVE-2008-4916.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Vmware | Ace | <= 2.5.1 | — |
| Vmware | Ace | 1.0 | — |
| Vmware | Ace | 1.0.0 | — |
| Vmware | Ace | 1.0.1 | — |
| Vmware | Ace | 1.0.2 | — |
| Vmware | Ace | 1.0.3 | — |
| Vmware | Ace | 1.0.4 | — |
| Vmware | Ace | 1.0.5 | — |
| Vmware | Ace | 1.0.6 | — |
| Vmware | Ace | 1.0.7 | — |
| Vmware | Ace | 2.0 | — |
| Vmware | Ace | 2.0.1 | — |
| Vmware | Ace | 2.0.2 | — |
| Vmware | Ace | 2.0.3 | — |
| Vmware | Ace | 2.0.4 | — |
| Vmware | Ace | 2.0.5 | — |
| Vmware | Ace | 2.5.0 | — |
| Vmware | Esx | 3.0.2 | — |
| Vmware | Esx | 3.0.3 | — |
| Vmware | Esx | 3.5 | — |
| Vmware | Esxi | 3.5 | — |
| Vmware | Fusion | <= 2.0.3 | — |
| Vmware | Fusion | 1.0 | — |
| Vmware | Fusion | 1.1 | — |
| Vmware | Fusion | 1.1.1 | — |
| Vmware | Fusion | 1.1.2 | — |
| Vmware | Fusion | 1.1.3 | — |
| Vmware | Fusion | 2.0 | — |
| Vmware | Fusion | 2.0.1 | — |
| Vmware | Fusion | 2.0.2 | — |
| Vmware | Player | <= 2.5.1 | — |
| Vmware | Player | 1.0.0 | — |
| Vmware | Player | 1.0.1 | — |
| Vmware | Player | 1.0.2 | — |
| Vmware | Player | 1.0.3 | — |
| Vmware | Player | 1.0.4 | — |
| Vmware | Player | 1.0.5 | — |
| Vmware | Player | 1.0.6 | — |
| Vmware | Player | 1.0.7 | — |
| Vmware | Player | 1.0.8 | — |
| Vmware | Player | 2.0 | — |
| Vmware | Player | 2.0.1 | — |
| Vmware | Player | 2.0.2 | — |
| Vmware | Player | 2.0.3 | — |
| Vmware | Player | 2.0.4 | — |
| Vmware | Player | 2.0.5 | — |
| Vmware | Player | 2.5 | — |
| Vmware | Server | 1.0 | — |
| Vmware | Server | 1.0.1 | — |
| Vmware | Server | 1.0.2 | — |
Showing 50 of 93 affected configurations. See NVD for the full list.
References
- http://lists.vmware.com/pipermail/security-announce/2009/000055.htmlPatch, Vendor Advisory
- http://lists.vmware.com/pipermail/security-announce/2009/000055.htmlPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-1244?
How severe is CVE-2009-1244?
How do I fix CVE-2009-1244?
Are you affected by CVE-2009-1244?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST