Unrated severityNVD Advisory· Published Jun 5, 2008· Updated Apr 23, 2026
CVE-2008-2100
CVE-2008-2100
Description
Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors.
Affected products
14cpe:2.3:a:vmware:esx_server:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:vmware:esx_server:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:esx_server:3.5:*:*:*:*:*:*:*
cpe:2.3:o:vmware:esx:2.5.4:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:vmware:esx:2.5.4:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esx:2.5.5:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esx:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esx:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esx:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esx:3.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
11- secunia.com/advisories/30556nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-201209-25.xmlnvdThird Party Advisory
- securityreason.com/securityalert/3922nvdThird Party Advisory
- securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/493080/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/29552nvdThird Party AdvisoryVDB Entry
- www.vmware.com/security/advisories/VMSA-2008-0009.htmlnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/42872nvdThird Party AdvisoryVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5081nvdThird Party Advisory
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5647nvdThird Party Advisory
- www.vupen.com/english/advisories/2008/1744nvdPermissions Required
News mentions
0No linked articles in our index yet.