| Vulnerability Name: | CVE-2014-1208 (CCN-90558) | ||||||||
| Assigned: | 2014-01-16 | ||||||||
| Published: | 2014-01-16 | ||||||||
| Updated: | 2017-08-29 | ||||||||
| Summary: | VMware Workstation 9.x before 9.0.1, VMware Player 5.x before 5.0.1, VMware Fusion 5.x before 5.0.1, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 allow guest OS users to cause a denial of service (VMX process disruption) by using an invalid port. | ||||||||
| CVSS v3 Severity: | 6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
| ||||||||
| CVSS v2 Severity: | 3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P) 2.4 Low (Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: MITRE Type: CNA CVE-2014-1208 Source: OSVDB Type: UNKNOWN 102197 Source: CCN Type: SA56499 VMware ESXi / ESX Two Denial of Service Weaknesses Source: SECUNIA Type: UNKNOWN 56499 Source: CCN Type: IBM Security Bulletin 1669248 VMware security issues that affect IBM CloudBurst Source: BID Type: UNKNOWN 64994 Source: CCN Type: BID-64994 Multiple VMWare Products Local Denial Of Service Vulnerability Source: SECTRACK Type: UNKNOWN 1029643 Source: SECTRACK Type: UNKNOWN 1029644 Source: CCN Type: VMSA-2014-0001 VMware Workstation, Player, Fusion, ESXi, ESX and vCloud Director address several security issues Source: CONFIRM Type: Vendor Advisory http://www.vmware.com/security/advisories/VMSA-2014-0001.html Source: XF Type: UNKNOWN vmware-esx-cve20141208-dos(90558) Source: XF Type: UNKNOWN vmware-esx-cve20141208-dos(90558) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration 3: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||