CVE-2008-2098
VMware Workstation, Player, ACE, and Fusion - Heap-Based Buffer Overflow in HGFS via Folder Sharing
Title source: llmDescription
Heap-based buffer overflow in the VMware Host Guest File System (HGFS) in VMware Workstation 6 before 6.0.4 build 93057, VMware Player 2 before 2.0.4 build 93057, VMware ACE 2 before 2.0.2 build 93057, and VMware Fusion before 1.1.2 build 87978, when folder sharing is used, allows guest OS users to execute arbitrary code on the host OS via unspecified vectors.
References (7)
Core 7
Core References
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201209-25.xml
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2008-0008.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42753
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1020148
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/492831/100/0/threaded
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1707/references
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/30476
Scores
EPSS
0.0010
EPSS Percentile
27.0%
Details
CWE
CWE-119
Status
published
Products (12)
vmware/ace_2
2.0
vmware/ace_2
2.01
vmware/fusion
1.1
vmware/fusion
1.1.1
vmware/vmware_player_2
2.0
vmware/vmware_player_2
2.01
vmware/vmware_player_2
2.02
vmware/vmware_player_2
2.03
vmware/vmware_workstation
6.0.1
vmware/vmware_workstation
6.0.2
... and 2 more
Published
Jun 02, 2008
Tracked Since
Feb 18, 2026