Summary
The host is installed with VMWare products multiple local privilege escalation Vulnerabilities.
Impact
Successful exploitation will allow attacker to execute arbitrary code with elevated privileges, this may aid in other attacks.
Impact Level: System/Application
Solution
Upgrade workstation 7.1.2 build 301548
http://www.vmware.com/products/ws/
Upgrade to Player 3.1.2 build 301548
http://www.vmware.com/products/player/
For VMware Server version 2.x,
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore.
General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.
Insight
The flaws are due to
- Race conditions within the 'vmware-mount' utility when handling temporary files during the mounting process can be exploited to create files or directories.
- An error within the 'vmware-mount' utility when loading libraries that can be exploited to execute arbitrary code with root privileges.
Affected
VMware Server version 2.x
VMware Player 3.x before 3.1.2 build 301548
VMware Workstation 7.x before 7.1.2 build 301548 on Linux
References
Severity
Classification
-
CVE CVE-2010-4295, CVE-2010-4296 -
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
- Adobe Air Multiple Vulnerabilities - October 12 (Windows)
- Adobe Acrobat Multiple Vulnerabilities April-2012 (Mac OS X)
- Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
- Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)