CVE-2009-2267
EXPLOITEDVMware ESX <4.0 - Privilege Escalation
Title source: llmDescription
VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, VMware ACE 2.5.x before 2.5.3 build 185404, VMware Server 1.x before 1.0.10 build 203137 and 2.x before 2.0.2 build 203138, VMware Fusion 2.x before 2.0.6 build 196839, VMware ESXi 3.5 and 4.0, and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0, when Virtual-8086 mode is used, do not properly set the exception code upon a page fault (aka #PF) exception, which allows guest OS users to gain privileges on the guest OS by specifying a crafted value for the cs register.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Tavis Ormandy & Julien Tinnes · textlocalmultiple
https://www.exploit-db.com/exploits/10207
References (11)
Scores
EPSS
0.0255
EPSS Percentile
85.5%
Details
VulnCheck KEV
2026-02-09
Status
published
Products (33)
vmware/ace
2.5.0
vmware/ace
2.5.1
vmware/ace
2.5.2
vmware/esx
2.5.5
vmware/esx
3.0.3
vmware/esx
3.5
vmware/esx
4.0
vmware/esxi
3.5
vmware/esxi
4.0
vmware/fusion
2.0
... and 23 more
Published
Nov 02, 2009
Tracked Since
Feb 18, 2026