Wow serious VMWare vulnerability HOST system infection



A flaw in vmware could allow malicious code to be run on the host machine according to Sunbeltblog and citing VMWare’s knowledge base. This is pretty big since this is something that’s not considered as a threat. (Many people use vmware and other virtual machines for malware/virus/spyware investigations because they’re supposed to be isolated from the host machine.)


A vulnerability has been discovered in vmnat.exe on Windows hosts and vmnet-natd on Linux systems. The vulnerability in this component affects VMware Workstation 5.5, VMware GSX Server 3.2, VMware ACE 1.0.1, VMware Player 1.0, and previous releases of these products. The vulnerability makes it possible for a malicious guest using a NAT networking configuration to execute unwanted code on the host machine.
VMware believes that the vulnerability is very serious and recommends that affected users update their products to the new releases available at www.vmware.com/download or change the configuration of the virtual machine so it does not use NAT networking.

It even affects the recent vmware player as noted above.

Related Posts

Blog Traffic Exchange Related Posts
  • VMware Server OK - just fresh off solving the reason I couldn't get vmplayer to start on my 1Ghz AMD 64 1GB of memory machine.... I started looking at vmserver. (RC1). Now, vmplayer is a free download (so is vmware server). I'm really liking what I see from vmware server and am......
  • Microsoft's quick response to network worms.... This is an ironic title because frankly, Microsoft has seemed to be slow in solutions for the recent zotob worm. Of course, they announced the vulnerability and accompanying update to solve the issue to begin with, but after the virus started propagating what do we see from Microsoft? They have......
  • Microsoft taking a name... Slashdot has an interesting story up about the background of the selection of Windows Defender. It seems that an Australian software developer had a product called Windows Defender which protected Windows users from malicious websites. Well a short while back he got a call from lawyers associated with Microsoft about......
Blog Traffic Exchange Related Websites
  • Self-Hosted Open Source Softwares The most simple way to publish a website or blogs are by using the open sources software. These software are mostly free and ready for upload at their respective websites. They are also compatible with most of the database and language system of most hosting servers. The software or weblog......
  • Download the Google Chrome OS Virtual Machine Last week, Techcrunch reported rumors of the release of the Google Chrome OS. They stated that the info came from a reliable source, and indeed that source was reliable. Google had an event at their headquarters, and indeed provided new details and a demo of the Chrome OS. The......
  • How To Make Money on the Internet - Back to Basics I have been thinking to write this post from a couple of days, but I didn't have much time to compile all the basic ways to make money online. Today it's Sunday and I got couple of hours, so I am writing this post. This post is basically for newbies......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site