Computer Security

VMWare Fusion multiple security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



VMWare Fusion multiple security vulnerabilities
Published:03.10.2009
Source:BUGTRAQ
SecurityVulns ID:10283
Type:local
Level:5/10
Description:DoS and integer overflow on IOCTL processing.
Affected:VMWARE : VMware Fusion 2.0
CVE:CVE-2009-3282 (Integer overflow in the vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 allows host OS users to cause a denial of service to the host OS via unspecified vectors.)
 CVE-2009-3281 (The vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.)
Original documentdocumentmu-b, Re: VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)
 documentVMWARE, VMSA-2009-0013 VMware Fusion resolves two security issues (03.10.2009)
Files:VMware Fusion <= 2.0.5 vmx86 kext local kernel root exploit
 VMware Fusion <= 2.0.5 vmx86 kext local denial of service POC
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru