This is indeed a great product and really deserves those awards!"The annual Technology of the Year Awards recognize the best and mostLink
innovative products reviewed by the InfoWorld Test Center in the past year
that are transforming, and will continue to transform, IT in the coming year,"
said Doug Dineley, Executive Editor, Test Center at InfoWorld. "2007 was a big
year for virtualization, and VMware continues to lead the way."
InfoWorld's 2008 Technology of the Year Awards recognize 49 IT products
across 9 general categories and identify the highest scoring products and
technologies reviewed in the past year by the InfoWorld Test Center. Selected
by InfoWorld Test Center editors and reviewers, the annual awards identify the
best and most innovative products on the IT landscape. InfoWorld's Technology
of the Year Awards are not open to outside nominations. Winners are drawn from
all of the products tested during the past year, with the final selections
made by InfoWorld's Test Center staff.
VMware Workstation, the industry standard for desktop virtualization
software, helps companies roll out applications faster; save on hardware costs
by testing multiple operating system and hardware configurations on a single
client or PC; and increase business productivity by instantly provisioning
desktop systems for new users.
vulnerable software: VMware Workstation 6.0 for Windows, possible some other VMware products as well type of vulnerability: DoS, potential privilege escalation I found a vulnerability in VMware Workstation 6.0 which allows an unprivileged user in the host OS to crash the system and potentially run arbitrary code with kernel privileges. The issue is in the vmstor-60 driver, which is supposed to mount VMware images within the host OS. When sending the IOCTL code FsSetVoleInformation with subcode FsSetFileInformation with a large buffer and underreporting its size to at max 1024 bytes, it will underrun and potentially execute arbitrary code. Security focus
Comments
Post a Comment