Forum - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

VMWare Fusion multiple security vulnerabilities
Published: 03.10.2009
Source: BUGTRAQ
SecurityVulns ID: 10283
Type: local
Level: 5/10
Description: DoS and integer overflow on IOCTL processing.

Affected: VMWARE : VMware Fusion 2.0
CVE: CVE-2009-3282 (Integer overflow in the vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 allows host OS users to cause a denial of service to the host OS via unspecified vectors.)
CVE-2009-3281 (The vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.)

Original document mu-b, Re: VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)

VMWARE, VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)

Files: VMware Fusion <= 2.0.5 vmx86 kext local kernel root exploit
VMware Fusion <= 2.0.5 vmx86 kext local denial of service POC
Discuss: Read or add your comments to this news (0 comments)

Show		Threads
		Messages

Main Forum (Eng) General security questions not appropriate for another forums.	3proxy Forum (Eng) All 3proxy question must be posted to this forum.	Bugs, Vulnerabilities, PoCs and Exploits (Eng) All vulnerability related questions, vulnerability digging and exploit creation.	Windows programming and administration (Eng) Administering Windows and application development.	Unix programming and administation (Eng) Administering Unix and application development.	Test forum Please post all test messages here. All test messages from different forums will be deteted.
Main Forum (Rus)	3proxy Forum (Rus)	Bugs, Vulnerabilities, PoCs and Exploits (Rus)	Windows programming and administration (Rus)	Unix programming and administation (Rus)

test server