CVE-2008-1392

NameCVE-2008-1392
DescriptionThe default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the console of the guest OS accessible through anonymous VIX API calls, which has unknown impact and attack vectors.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs486177

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
vmware-packagesource(unstable)(unfixed)low486177

Notes

[etch] - vmware-package <no-dsa> (Contrib not supported)
vmware-package just builds vmware from downloaded tarballs, the package itself
does not download them, however it needs to update its hashes for upstream tarballs
Search for package or bug name: Reporting problems