Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1787

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2011-1787
Last Modified 13 Nov 2014 10:00:31
Published 06 Jun 2011 03:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1787

Summary

Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to gain privileges on the guest OS by mounting a filesystem on top of an arbitrary directory.

Vulnerable Systems

Application

  • Vmware Esx 3.0.3

  • Vmware Esx 3.5

  • Vmware Esx 4.0

  • Vmware Esx 4.1

  • Vmware Esxi 3.5

  • Vmware Esxi 4.0

  • Vmware Esxi 4.1

  • Vmware Fusion 3.1

  • Vmware Fusion 3.1.1

  • Vmware Fusion 3.1.2

  • Vmware Player 3.1

  • Vmware Player 3.1.1

  • Vmware Player 3.1.2

  • Vmware Player 3.1.3

  • Vmware Workstation 7.1.1

  • Vmware Workstation 7.1.2

  • Vmware Workstation 7.1.3


References

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2011-0009.html

SUSE - openSUSE-SU-2011:0617

SECTRACK - 1025601

BID - 48098

SECUNIA - 44904

SECUNIA - 44840

Related Patches

VMware VMSA-2011-0011 VMware Fusion 3.1.3 for Mac (See Notes)


Last Updated: 27 May 2016 10:52:00