Computer Security
[EN] securityvulns.ru no-pyccku


VMWare privilege escalation
Published:09.12.2013
Source:
SecurityVulns ID:13443
Type:local
Threat Level:
5/10
Description:Privilege escalation in the guest system via LGTOSYNC.SYS.
Affected:VMWARE : ESX 4.1
 VMWARE : ESXi 5.1
 VMWARE : VMware Workstation 9.0
 VMWARE : VMware Player 5.0
CVE:CVE-2013-3519 (lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x before 5.0.3, VMware Fusion 5.x before 5.0.4, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1, when a 32-bit Windows guest OS is used, allows guest OS users to gain guest OS privileges via an application that performs a crafted memory allocation.)
Original documentdocumentVMWARE, NEW VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation (09.12.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod