Information disclosure in Microsoft Windows
CVE-2010-1138
The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 on Windows, VMware Player 3.0 before 3.0.1 build 227600, VMware Player 2.5.x before 2.5.4 build 246459 on…
Vulnerability class: Information Disclosure
EPSS: 0.008 (73.9th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Windows
- Vmware Ace — versions 2.6, 2.5.2, 2.5.1
- Vmware Fusion — versions 2.0, 2.0.5, 2.0.3
- Vmware Player — versions 2.5.2, 3.0, 2.5
- Vmware Server — versions 2.0.1, 2.0.2, 2.0.0
- Vmware Workstation — versions 7.0, 6.5.0, 6.5.3
- N/a — versions n/a
Weakness classification (CWE)
References
- 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues (mailing-list, x_refsource_BUGTRAQ)
- 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues (mailing-list, x_refsource_FULLDISC)
- [security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues (Vendor Advisory, mailing-list, x_refsource_MLIST, Patch)
- 63607 (x_refsource_OSVDB, vdb-entry)
- 39203 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- 39206 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- 39215 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- GLSA-201209-25 (vendor-advisory, x_refsource_GENTOO)
- 39395 (vdb-entry, x_refsource_BID)
- 1023836 (vdb-entry, x_refsource_SECTRACK)