Multiple VMWare clipboard problem
Published:		05.02.2007
Source:		BUGTRAQ
SecurityVulns ID:		7183
Type:		local
Level:		3/10
Description:		Content removed from clepboard may reapper during switching between host and guest systems.

Affected:		VMWARE : VMware Workstation 5.5
CVE:		CVE-2007-0833 (VMware Workstation 5.5.3 34685, when the "Enable copy and paste to and from this virtual machine" option is enabled, preserves clipboard data on the guest operating system after it was deleted on the host operating system, which might allow local users to read clipboard contents by moving the focus back to the host operating system.)
		CVE-2007-0832 (VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox is changed, which allows local users to obtain sensitive information or conduct certain attacks that are facilitated by weaker isolation between the host and guest operating systems.)

Original document

Eitan Caspi, Vmare workstation guest isolation weaknesses (clipboard transfer) (05.02.2007)

Discuss:

Read or add your comments to this news (0 comments)