Vulnerability Database

300,830

Total vulnerabilities in the database

CVE-2008-1340

Virtual Machine Communication Interface (VMCI) in VMware Workstation 6.0.x before 6.0.3, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 allows attackers to cause a denial of service (host OS crash) via crafted VMCI calls that trigger "memory exhaustion and memory corruption."

  • Published: Mar 20, 2008
  • Updated: Nov 9, 2025
  • CVE: CVE-2008-1340
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.1
  • AV:N/AC:M/Au:N/C:N/I:N/A:C

CWEs:

Software From Fixed in
vmware / ace 1.0 1.0.x
vmware / player 2.0.1 2.0.1.x
vmware / player 2.0.2 2.0.2.x
vmware / player 1.0.2 1.0.2.x
vmware / ace 2.0 2.0.x
vmware / workstation 5.5.4_build_44386 5.5.4_build_44386.x
vmware / workstation 6.0 6.0.x
vmware / workstation 5.5.3_build_34685 5.5.3_build_34685.x
vmware / vmware_workstation 5.5.5 5.5.5.x
vmware / player 1.0.3 1.0.3.x
vmware / workstation 5.5.3_build_42958 5.5.3_build_42958.x
vmware / workstation 5.5 5.5.x
vmware / vmware_server 1.0.4 1.0.4.x
vmware / player 1.0.4 1.0.4.x
vmware / vmware_workstation 6.0.2 6.0.2.x
vmware / player 1.0.5 1.0.5.x
vmware / server 1.0.3 1.0.3.x
vmware / vmware_server 1.0.2 1.0.2.x
vmware / player 2.0 2.0.x
vmware / vmware_workstation 6.0.1 6.0.1.x
vmware / workstation 5.5.4 5.5.4.x