PT-2012-3324 · Vmware · Vmware Player+3
Publicado
2012-04-17
·
Atualizado
2017-12-29
·
CVE-2012-1518
CVSS v2.0
8.3
Alta
| Vetor | AV:A/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
VMware Workstation versions 8.0.0 through 8.0.1
VMware Player versions 4.0.0 through 4.0.1
VMware Fusion versions 4.0.0 through 4.1.1
VMware ESXi versions 3.5 through 5.0
VMware ESX versions 3.5 through 4.1
Description
The issue arises from an incorrect ACL for the VMware Tools folder, allowing guest OS users to gain guest OS privileges via unspecified vectors.
Recommendations
For VMware Workstation versions 8.0.0 through 8.0.1, update to version 8.0.2 or later.
For VMware Player versions 4.0.0 through 4.0.1, update to version 4.0.2 or later.
For VMware Fusion versions 4.0.0 through 4.1.1, update to version 4.1.2 or later.
For VMware ESXi versions 3.5 through 5.0, update to a version later than 5.0.
For VMware ESX versions 3.5 through 4.1, update to a version later than 4.1.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Vmware Esxi
Vmware Fusion
Vmware Player
Vmware Workstation