Login:
Password:
Lost Password?
Print this article  |  E-mail this article  |  Comment on this article

Security Vulnerability Found in VMware

By Nate Mook, BetaNews

December 21, 2005, 4:12 PM

A "very serious" security vulnerability has been discovered in VMware's line of virtual computing products, including VMware Workstation, GSX Server, ACE and VMware Player. The flaw could enable malware to effectively "jump" from the virtual machine onto the real computer running VMware software.

"Since VMware is used heavily in malware research, this is an obvious danger," says Alex Eckelberry, CEO of Sunbelt Software. VMware has posted updates to the affected products, which customers are urged to download immediately. Alternatively, users can disable the NAT service, which contains the vulnerability.

Add a Comment (6 Comments)

BetaNews reserves the right to remove any comment at any time for any reason. Please keep your responses appropriate and on topic. Foul language and personal attacks will not be tolerated.

Name (required):

E-mail (required):

Enter Your Comment:

By Siyavash

posted Dec 21, 2005 - 7:40 PM

That's why I use Microsoft VirtualPC instead. =:D

Score: 0

By Vantorax

posted Dec 22, 2005 - 8:50 AM

And Microsoft has always been immune to nasty vulnerabilities?

Score: 0

By Mark Gillespie

posted Dec 22, 2005 - 7:07 AM

then you are a fool.

Score: 0

By PC_Tool

posted Dec 21, 2005 - 4:51 PM

Um...

*gasp*

A NAT gateway to my host PC means the guest OS can communicate to the Host?

Shocking!

...Idiots.

Score: 0

By NEOBassDUDE

posted Dec 21, 2005 - 4:21 PM

Thats just about the worst exploit you could have with this kind of software!

Score: 0

By Kramy

posted Dec 21, 2005 - 4:38 PM

Good thing they patched it immediately then!

Score: 0

Aug 19 - 7:26 PM ET Palm's magic act makes Treo Pro 850 appear, disappear

Aug 19 - 7:18 PM ET Pandora: Last gasp for Internet radio can't be further prolonged

Aug 19 - 5:48 PM ET Has Firefox 3 certificate handling become too 'scary?'

Aug 19 - 3:35 PM ET Apple gives MobileMe subscribers more free time

Aug 19 - 3:23 PM ET Microsoft supports Blu-ray mastering in Windows; is Xbox next?

Aug 19 - 3:23 PM ET Japan says iPod nanos may pose overheating risk

Aug 19 - 1:49 PM ET Users to Microsoft: 'Just make Windows faster'

Aug 19 - 1:46 PM ET TSA-approved laptop bags: $220+

Aug 19 - 1:15 PM ET Apple releases iPhone 2.0.2 update, 3G problems remain

Aug 19 - 12:50 PM ET Google: Android-based HTC Dream may not be alone for long