Computer Security
[EN] securityvulns.ru no-pyccku


VMWare Studio priovilege escalation
Published:15.07.2010
Source:
SecurityVulns ID:10998
Type:local
Threat Level:
5/10
Description:Privilege escalation via vami-sfcbd/
CVE:CVE-2010-2667 (Multiple unspecified vulnerabilities in the Virtual Appliance Management Infrastructure (VAMI) in VMware Studio 2.0 allow remote authenticated users to execute arbitrary commands via vectors involving (1) the Studio virtual appliance or (2) a virtual appliance created by the Studio virtual appliance.)
 CVE-2010-2427 (VMware Studio 2.0 does not properly write to temporary files, which allows local users to gain privileges via unspecified vectors.)
Original documentdocumentVMWARE, VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0. (15.07.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod