News

Security Vulnerability Found in VMware

By Nate Mook | Published December 21, 2005, 4:12 PM

A "very serious" security vulnerability has been discovered in VMware's line of virtual computing products, including VMware Workstation, GSX Server, ACE and VMware Player. The flaw could enable malware to effectively "jump" from the virtual machine onto the real computer running VMware software.

"Since VMware is used heavily in malware research, this is an obvious danger," says Alex Eckelberry, CEO of Sunbelt Software. VMware has posted updates to the affected products, which customers are urged to download immediately. Alternatively, users can disable the NAT service, which contains the vulnerability.

Comments

Siyavash
Dec 21, 2005 - 7:40 PM

That's why I use Microsoft VirtualPC instead. =:D

Score: 0

|
Post Reply
Mark Gillespie
Dec 22, 2005 - 7:07 AM

then you are a fool.

Score: 0

|
Post Reply
Vantorax
Dec 22, 2005 - 8:50 AM

And Microsoft has always been immune to nasty vulnerabilities?

Score: 0

|
Post Reply
PC_Tool
Dec 21, 2005 - 4:51 PM

Um...

*gasp*

A NAT gateway to my host PC means the guest OS can communicate to the Host?

Shocking!

...Idiots.

Score: 0

|
Post Reply
NEOBassDUDE
Dec 21, 2005 - 4:21 PM

Thats just about the worst exploit you could have with this kind of software!

Score: 0

|
Post Reply
Kramy
Dec 21, 2005 - 4:38 PM

Good thing they patched it immediately then!

Score: 0

|
Post Reply

Silverlight 3 goes live on Microsoft's servers

Microsoft's answer to Adobe's Flash is (unofficially) here, with prospects of higher-speed, higher-resolution video and for the first time, 3D.

Three Android phones on the way from T-Mobile in 2009

T-Mobile's myTouch 3G, launched Wednesday, will be followed by two more Android phones later this year, but neither of them will be HTC's Hero.

Best Buy-brand TVs to get TiVo

A new alliance will place the retailer's own brand alongide the manufacturers, and could also lead to future partnerships on services.

LTE still lacks a voice

The 4G Wireless standard that Verizon hopes to show off before this year is out is still at a loss for (spoken) words.

Data sharing among online advertisers: Is sanity in sight?

Lockdown with Angela Gunn In the middle of a 15-page plea not to get regulated, a spark of smart thinking.

T-Mobile's strategy to combat Apple's iPhone with Android

With a trio of Android phones now in the pipeline for 2009, T-Mobile hopes to break the iPhone's emerging stranglehold.

EC's Reding: Government should act as broker for media downloads

If Internet media services don't step up and build an attractive way for users to start paying for downloads, a commissioner says, government may do the job instead.

Sony TVs get Netflix, still no PS3

Though it's coming in behind LG, Samsung, and Microsoft, Sony will begin to offer Netflix streaming, too.

Google Chrome OS: Too little, too early

Carmi Levy: Wide Angle Zoom Don't start the revolution just yet, says Carmi, who isn't so certain Chrome OS will be the "Windows Killer."

GAO pen test brings the hammer down on federal rent-a-cops

But are the computers to blame for the contract-guard fiasco at FPS?

What's Next: Chrome OS will have at least some friends in high places

Also: South Korea takes another round of DDoS abuse, and Neelie Kroes and Steve Ballmer may shake hands before she exits stage left.

Report: Evidence of further creativity with Windows 7 upgrade prices

A ZDNet blogger did some serious digging for clues as to a reported price break on multiple Windows 7 Home Premium licenses, and may have found it.

LimeWire for Windows 5.2.5 Beta

July 9 - 6:47 PM ET

Vuze for Windows 4.2.0.4

July 9 - 6:26 PM ET

UltraVNC 1.0.6.4

July 9 - 6:05 PM ET

WildBit Viewer 5.5 Beta 3.0

July 9 - 5:44 PM ET

Bvckup 1.0.0.239 Beta

July 9 - 5:30 PM ET

Microsoft Silverlight for Windows 3.0.40624.0

July 9 - 3:16 PM ET

AOL for Windows 9.5 Refresh Beta 11 (0.4337.74.1)

July 9 - 2:32 PM ET