PT-2003-1760 · Vmware · Vmware Esx Server+1

Paul Szabo

Published

2003-08-02

Updated

2016-10-18

CVE-2003-0631

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: VMware GSX Server versions 2.5.1 build 4968 and earlier VMware Workstation versions 4.0 and earlier

Description: The issue allows local users to gain root privileges via certain environment variables that are used when launching a virtual machine session.

Recommendations: For VMware GSX Server versions 2.5.1 build 4968 and earlier, consider restricting the use of environment variables when launching virtual machine sessions until a fix is available. For VMware Workstation versions 4.0 and earlier, consider restricting the use of environment variables when launching virtual machine sessions until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0631

Affected Products

Vmware Esx Server

Vmware Workstation

PT-2003-1760 · Vmware · Vmware Esx Server+1

CVE-2003-0631

Related Identifiers

Affected Products

References · 4