VMware Fusion UDF File Systems Buffer Overflow Vulnerability (Mac OS X) Network Vulnerability

Summary

The host is installed with VMWare Fusion and are prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attacker to execution of arbitrary code. Impact Level: System/Application

Solution

Upgrade to Vmware Fusion version 3.1.3 or later For Upgrades refer, http://www.vmware.com/security/advisories/VMSA-2011-0011.html

Insight

The flaw is due to an error when handling UDF filesystem images. This can be exploited to cause a buffer overflow via a specially crafted ISO image file.

Affected

Vmware Fusion 3.1.0 before 3.1.3

References

http://osvdb.org/76060
http://secunia.com/advisories/46241
http://www.securitytracker.com/id?1026139
http://www.vmware.com/security/advisories/VMSA-2011-0011.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3868

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CA Internet Security Suite Plus 'KmxSbx.sys' Buffer Overflow Vulnerability
CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities
Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability
3CTftpSvc TFTP Server Long Mode Buffer Overflow Vulnerability
Buffer Overflow Vulnerability in Adobe Reader (Linux)

Take action and discover your vulnerabilities