Vulnerability Description
Unspecified vulnerability in the DHCP service in VMware Workstation 5.5.x before 5.5.6, VMware Player 1.0.x before 1.0.6, VMware ACE 1.0.x before 1.0.5, VMware Server 1.0.x before 1.0.5, and VMware Fusion 1.1.x before 1.1.1 allows attackers to cause a denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Ace | 1.0 |
| Vmware | Player | 1.0.2 |
| Vmware | Server | 1.0.3 |
| Vmware | Vmware Server | 1.0.2 |
| Vmware | Vmware Workstation | 5.5.5 |
| Vmware | Workstation | 5.5 |
Related Weaknesses (CWE)
References
- http://lists.vmware.com/pipermail/security-announce/2008/000008.htmlPatch
- http://security.gentoo.org/glsa/glsa-201209-25.xml
- http://securityreason.com/securityalert/3755
- http://securitytracker.com/id?1019623
- http://www.securityfocus.com/archive/1/489739/100/0/threaded
- http://www.securityfocus.com/bid/28276
- http://www.securityfocus.com/bid/28289
- http://www.vmware.com/security/advisories/VMSA-2008-0005.htmlPatch
- http://www.vmware.com/support/fusion/doc/releasenotes_fusion.htmlPatch
- http://www.vmware.com/support/player/doc/releasenotes_player.htmlPatch
- http://www.vmware.com/support/server/doc/releasenotes_server.htmlPatch
- http://www.vmware.com/support/ws55/doc/releasenotes_ws55.htmlPatch
- http://www.vupen.com/english/advisories/2008/0905/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41254
- http://lists.vmware.com/pipermail/security-announce/2008/000008.htmlPatch
FAQ
What is CVE-2008-1364?
CVE-2008-1364 is a vulnerability with a CVSS score of 7.8 (HIGH). Unspecified vulnerability in the DHCP service in VMware Workstation 5.5.x before 5.5.6, VMware Player 1.0.x before 1.0.6, VMware ACE 1.0.x before 1.0.5, VMware Server 1.0.x before 1.0.5, and VMware Fu...
How severe is CVE-2008-1364?
CVE-2008-1364 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1364?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Ace, Vmware Player, Vmware Server, Vmware Vmware Server, Vmware Vmware Workstation.