Computer Security
[EN] securityvulns.ru no-pyccku


VMWare Fusion multiple security vulnerabilities
Published:03.10.2009
Source:
SecurityVulns ID:10283
Type:local
Threat Level:
5/10
Description:DoS and integer overflow on IOCTL processing.
Affected:VMWARE : VMware Fusion 2.0
CVE:CVE-2009-3282 (Integer overflow in the vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 allows host OS users to cause a denial of service to the host OS via unspecified vectors.)
 CVE-2009-3281 (The vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.)
Original documentdocumentmu-b, Re: VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)
 documentVMWARE, VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)
Files:VMware Fusion <= 2.0.5 vmx86 kext local denial of service POC
 VMware Fusion <= 2.0.5 vmx86 kext local kernel root exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod