CVE-2008-4279

VMware Player 1.0-1.0.8 - Authenticated Privilege Escalation via Non-Canonical Address Jump

Title source: llm
STIX 2.1

Description

The CPU hardware emulation for 64-bit guest operating systems in VMware Workstation 6.0.x before 6.0.5 build 109488 and 5.x before 5.5.8 build 108000; Player 2.0.x before 2.0.5 build 109488 and 1.x before 1.0.8; Server 1.x before 1.0.7 build 108231; and ESX 2.5.4 through 3.5 allows authenticated guest OS users to gain additional guest OS privileges by triggering an exception that causes the virtual CPU to perform an indirect jump to a non-canonical address.

References (12)

Core 12
Core References
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=122331139823057&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32157
Third Party Advisory mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2008-October/064860.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32179
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2740
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32180
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2008-0016.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45668
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31569
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020991
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/497041/100/0/threaded

Scores

EPSS 0.0007
EPSS Percentile 21.2%

Details

CWE
CWE-264
Status published
Products (4)
vmware/esx 2.5.4 - 3.5
vmware/player 1.0 - 1.0.8
vmware/server 1.0 - 1.0.8
vmware/workstation 5.5 - 5.5.8
Published Oct 06, 2008
Tracked Since Feb 18, 2026