CVE-2009-2267

Published Nov 2, 2009

Last updated 6 years ago

CVSS info 6.9

Overview

Description: VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, VMware ACE 2.5.x before 2.5.3 build 185404, VMware Server 1.x before 1.0.10 build 203137 and 2.x before 2.0.2 build 203138, VMware Fusion 2.x before 2.0.6 build 196839, VMware ESXi 3.5 and 4.0, and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0, when Virtual-8086 mode is used, do not properly set the exception code upon a page fault (aka #PF) exception, which allows guest OS users to gain privileges on the guest OS by specifying a crafted value for the cs register.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.9
Impact score: 10
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vmware:ace:2.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71537AE-346D-4BA9-90E7-EA0AB0CD0886"
          },
          {
            "criteria": "cpe:2.3:a:vmware:ace:2.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5674C3DD-F510-4701-ACA8-437576307528"
          },
          {
            "criteria": "cpe:2.3:a:vmware:ace:2.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E62960B2-91AE-4DD7-8085-9BA6BCB84473"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esx:2.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B037838B-072E-4676-9E5D-86F5BC207512"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esx:3.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B6F7416-E694-4EC9-9FE5-0C24448ECB34"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esx:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE5ECA1B-7415-4390-8018-670F2C3CDF35"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "889DE9BE-886F-4BEF-A794-5B5DE73D2322"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esxi:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD59C463-F352-4F6C-853F-415E3FB4ABDD"
          },
          {
            "criteria": "cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BDAA7C8-8F2F-4037-A517-2C1EDB70B203"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E18541B-36B6-40A7-9749-FA47A10379C8"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55EBD95F-3DF7-49F3-A7AA-47085E0B7C88"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6DA47C9-3D1A-49A7-8976-AE05D6730673"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "692CC131-5C6C-4AD6-B85C-07DF21168BC8"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "617EFBFF-D047-4A0B-ACB6-83B27710F6F8"
          },
          {
            "criteria": "cpe:2.3:a:vmware:fusion:2.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1D0DF91-17E8-45D4-B625-737FE50C23CF"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE944A70-CB9C-4712-9802-509531396A02"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:2.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "252D2C0B-B89A-4C89-8D6B-6A8E58FCD8DC"
          },
          {
            "criteria": "cpe:2.3:a:vmware:player:2.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62DA49FA-6657-45B5-BF69-D3A03BA62A4D"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73EC33AB-E92A-4AA8-A523-C341133BB515"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53197903-0614-4460-8944-C1B5257D71A0"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F037B05F-6F92-4BE1-B672-F677CBEFD075"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8DD6D27-1335-44EF-8B69-A9163A67BC2D"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6BFEAE8-0118-4548-A6EA-E90FA8FE7AF9"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42049891-38B7-4BB7-8DA5-A87169E2D958"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07139DF7-C36B-4FED-8558-7FA49BE0BCFF"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E0D7307-5946-45DC-88D3-6BC72EF50184"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89699BB6-9E41-41DC-B597-B45CA05313A8"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:1.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C9D09AC-7D9B-4150-86BC-19F44F6F2CA8"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2786E370-6108-4695-B0A8-9F19D8E3C0C0"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:2.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C2AAA6D-A31D-43A7-AB2F-FBF9815A9745"
          },
          {
            "criteria": "cpe:2.3:a:vmware:server:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E6CFDD84-A482-42C2-B43F-839F4D7F1130"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E8F3BFF-676B-4E2C-98BA-DCA71E49060F"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3E658DA-56E8-49F0-B486-4EF622B63627"
          },
          {
            "criteria": "cpe:2.3:a:vmware:workstation:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "541D77A2-99C5-4CDB-877F-7E83E1E3369E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References