Computer Security
[EN] securityvulns.ru no-pyccku


VMWare Tools privilege escalation
Published:07.09.2012
Source:
SecurityVulns ID:12581
Type:local
Threat Level:
4/10
Description:It's possible to execute code via DLL hijacking.
Affected:VMWARE : ESX 4.1
 VMWARE : VMWare Fusion 4.1
 VMWARE : VMWare Player 4.0
 VMWARE : VMWare Workstation 8.0
 VMWARE : VMware View 5.1
 VMWARE : ESX 5.0
CVE:CVE-2012-1666 (Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3 and 5.0 before P03 allows local users to gain privileges via a Trojan horse tpfc.dll file in the current working directory.)
Original documentdocumentmoshez_(at)_comsecglobal.com, VMWare Tools susceptible to binary planting by hijack (07.09.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod