News

Security Vulnerability Found in VMware

By Nate Mook | Published December 21, 2005, 4:12 PM

A "very serious" security vulnerability has been discovered in VMware's line of virtual computing products, including VMware Workstation, GSX Server, ACE and VMware Player. The flaw could enable malware to effectively "jump" from the virtual machine onto the real computer running VMware software.

"Since VMware is used heavily in malware research, this is an obvious danger," says Alex Eckelberry, CEO of Sunbelt Software. VMware has posted updates to the affected products, which customers are urged to download immediately. Alternatively, users can disable the NAT service, which contains the vulnerability.

Comments

View comments by with a score of at least

Siyavash
Dec 21, 2005 - 7:40 PM

That's why I use Microsoft VirtualPC instead. =:D

Score: 0

|
Post Reply
Mark Gillespie
Dec 22, 2005 - 7:07 AM

then you are a fool.

Score: 0

|
Post Reply
Vantorax
Dec 22, 2005 - 8:50 AM

And Microsoft has always been immune to nasty vulnerabilities?

Score: 0

|
Post Reply
PC_Tool
Dec 21, 2005 - 4:51 PM

Um...

*gasp*

A NAT gateway to my host PC means the guest OS can communicate to the Host?

Shocking!

...Idiots.

Score: 0

|
Post Reply
NEOBassDUDE
Dec 21, 2005 - 4:21 PM

Thats just about the worst exploit you could have with this kind of software!

Score: 0

|
Post Reply
Kramy
Dec 21, 2005 - 4:38 PM

Good thing they patched it immediately then!

Score: 0

|
Post Reply

Bing gets geekier with new Wolfram Alpha integration

Microsoft's Bing is now teamed up with Wolfram Alpha for computational search results.

HP to acquire 3Com for $2.7 B in cash, focus on China

A long and uncertain comeback trail comes to an end for the one-time network equipment giant.

Universities reject Kindle DX as a textbook replacement

Two universities running Kindle DX pilot programs have rejected the device.

Snow Leopard and Windows 7 still can't crack the netbook problem

Apple has killed Atom support in OS X 10.6.2 and Windows 7 Starter Edition is stripped of "basic" functionality.

Facebook for iPhone developer goes from Apple supporter to 'I quit!' in 3 months

Fed up with Apple's App Store policies, the developer of Facebook for iPhone has bailed on the iPhone.

Bing vs. Google rematch on video search

After Microsoft folds some old MSN Video features back into Bing, do they add to the search engine's functionality or take away?

New EU telecoms framework mandates user consent before getting cookies

Do you want a cookie? No. Do you want a cookie? No. Do you want a cookie? No. Do you want...Are you annoyed yet? That's a preview of 2011.

The Samsung Intrepid: A nice phone, if you can accept Windows Mobile

Samsung appears to have built solid enough hardware, but it's the software that seems uncomfortable and unintuitive.

A real beta process at work: Mozilla fires up Firefox 3.6 Beta 2

In the clearest sign yet that public input really does help the development process, a flurry of bug detections provoked Mozilla to release Beta 2 of the next Firefox.

Kindle for PC opens in beta, underwhelms

Amazon has opened the beta of Kindle for PC, a companion to the Kindle, but little else.

European ministers approve watered-down 'neutral net' language

The latest provision in the EU's telecoms regulatory framework would let businesses cancel individuals' Internet access, if they go to court first.