VMware users – Update Now!



December 21st, 2005

If you use [tag]VMware[/tag] Workstation 5.5, VMware GSX Server 3.2, VMware ACE 1.0.1, VMware Player 1.0 then you need to update quickly - a vulnerability has been discovered that could allow malware to make the transition from the virtual VMware PC into the host PC.

A vulnerability has been discovered in vmnat.exe on Windows hosts and vmnet-natd on Linux systems. The vulnerability in this component affects [tag]VMware Workstation[/tag] 5.5, [tag]VMware GSX Server[/tag] 3.2, [tag]VMware ACE[/tag] 1.0.1, [tag]VMware Player[/tag] 1.0, and previous releases of these products. The vulnerability makes it possible for a malicious guest using a NAT networking configuration to execute unwanted code on the host machine.

VMware believes that the vulnerability is very serious and recommends that affected users update their products to the new releases available at www.vmware.com/download or change the configuration of the virtual machine so it does not use NAT networking.

I bet that this is a big shock for some who actually use VMware to play with worms and viruses!

(via Sunbelt Blog)

This entry was posted on Wednesday, December 21st, 2005 at 18:23 and is filed under Stay Secure. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.