Computer Security
[EN] securityvulns.ru no-pyccku


VMWare ESXi / ESX weak permissions
Published:24.04.2012
Source:
SecurityVulns ID:12346
Type:local
Threat Level:
5/10
Description:VMWare Tools folder weak permissions
Affected:VMWARE : ESXi 4.1
 VMWARE : ESXi 4.0
 VMWARE : ESX 4.0
 VMWARE : ESX 4.1
 VMWARE : ESXi 5.0
 VMWARE : ESXi 3.5
 VMWARE : ESX 3.5
 VMWARE : VMWare Fusion 4.1
 VMWARE : VMWare Player 4.0
 VMWARE : VMWare Workstation 8.0
CVE:CVE-2012-1518 (VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 though 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.)
Original documentdocumentVMWARE, VMSA-2012-0007 VMware hosted products and ESXi/ESX patches address privilege escalation (24.04.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod