PT-2011-1001 · Vmware · Vmware Workstation+1

Publicado

2011-04-01

Atualizado

2018-10-09

CVE-2011-1126

CVSS v2.0

6.9

Média

Vetor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions VMware VIX API versions prior to 1.10.3 VMware Workstation versions 6.5.x through 7.1.4 build 385536

Description The issue allows local users to potentially gain privileges via a Trojan horse shared library in an unspecified directory. This could enable an attacker to control the execution of the vmrun utility, which is used to perform various actions on virtual machines.

Recommendations For VMware VIX API versions prior to 1.10.3, update to version 1.10.3 or later. For VMware Workstation versions 6.5.x through 7.1.4 build 385536, update to a version after 7.1.4 build 385536.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

BDU:2014-00005

CVE-2011-1126

Produtos afetados

Vmware Vix Api

Vmware Workstation

PT-2011-1001 · Vmware · Vmware Workstation+1

CVE-2011-1126

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13