Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2010-1138

Published: 12/04/2010 Updated: 15/05/2013
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Workstation

Vulnerability Summary

The virtual networking stack in VMware Workstation 7.0 prior to 7.0.1 build 227600, VMware Workstation 6.5.x prior to 6.5.4 build 246459 on Windows, VMware Player 3.0 prior to 3.0.1 build 227600, VMware Player 2.5.x prior to 2.5.4 build 246459 on Windows, VMware ACE 2.6 prior to 2.6.1 build 227600 and 2.5.x prior to 2.5.4 build 246459, VMware Server 2.x, and VMware Fusion 3.0 prior to 3.0.1 build 232708 and 2.x prior to 2.0.7 build 246742 allows remote malicious users to obtain sensitive information from memory on the host OS by examining received network packets, related to interaction between the guest OS and the host vmware-vmx process.

Vulnerable Product Search on Vulmon Subscribe to Product

vmware workstation 7.0

vmware workstation 6.5.1

vmware workstation 6.5.2

vmware workstation 6.5.3

vmware workstation 6.5.0

vmware player 3.0

vmware player 2.5

vmware player 2.5.1

vmware player 2.5.2

vmware player 2.5.3

vmware ace 2.5.0

vmware ace 2.5.1

vmware ace 2.6

vmware ace 2.5.2

vmware ace 2.5.3

vmware server 2.0.1

vmware server 2.0.2

vmware server 2.0.0

vmware fusion 3.0

vmware fusion 2.0.1

vmware fusion 2.0.6

vmware fusion 2.0

vmware fusion 2.0.4

vmware fusion 2.0.5

vmware fusion 2.0.2

vmware fusion 2.0.3

References

CWE-200http://secunia.com/advisories/39215http://secunia.com/advisories/39203http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.htmlhttp://secunia.com/advisories/39206http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.htmlhttp://lists.vmware.com/pipermail/security-announce/2010/000090.htmlhttp://www.vmware.com/security/advisories/VMSA-2010-0007.htmlhttp://osvdb.org/63607http://www.securitytracker.com/id?1023836http://www.securityfocus.com/bid/39395http://security.gentoo.org/glsa/glsa-201209-25.xmlhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook