CVE Vulnerabilities

CVE-2008-0967

Published: Jun 05, 2008 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.9 MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware ESX 2.5.4 through 3.5, allows local users to gain privileges via a library path option in a configuration file.

Affected Software

Name Vendor Start Version End Version
Esx_server Vmware 2.5.5 (including) 2.5.5 (including)
Esx_server Vmware 3.1 (including) 3.1 (including)
Esx_server Vmware 3.2 (including) 3.2 (including)
Esx_server Vmware 3.3 (including) 3.3 (including)
Esx_server Vmware 3.5 (including) 3.5 (including)
Esxi Vmware 3.5 (including) 3.5 (including)
Player Vmware 1.0.0 (including) 1.0.0 (including)
Player Vmware 1.0.1 (including) 1.0.1 (including)
Player Vmware 1.0.2 (including) 1.0.2 (including)
Player Vmware 1.0.3 (including) 1.0.3 (including)
Player Vmware 1.0.4 (including) 1.0.4 (including)
Player Vmware 1.0.5 (including) 1.0.5 (including)
Player Vmware 1.0.6 (including) 1.0.6 (including)
Player Vmware 2.0 (including) 2.0 (including)
Player Vmware 2.0.1 (including) 2.0.1 (including)
Player Vmware 2.0.2 (including) 2.0.2 (including)
Player Vmware 2.0.3 (including) 2.0.3 (including)
Server Vmware 1.0.3 (including) 1.0.3 (including)
Vmware_server Vmware 1.0.0 (including) 1.0.0 (including)
Vmware_server Vmware 1.0.1 (including) 1.0.1 (including)
Vmware_server Vmware 1.0.2 (including) 1.0.2 (including)
Vmware_server Vmware 1.0.4 (including) 1.0.4 (including)
Vmware_server Vmware 1.0.5 (including) 1.0.5 (including)
Vmware_workstation Vmware 5.5.0 (including) 5.5.0 (including)
Vmware_workstation Vmware 5.5.2 (including) 5.5.2 (including)
Vmware_workstation Vmware 5.5.5 (including) 5.5.5 (including)
Vmware_workstation Vmware 5.5.6 (including) 5.5.6 (including)
Vmware_workstation Vmware 6.0.1 (including) 6.0.1 (including)
Vmware_workstation Vmware 6.0.2 (including) 6.0.2 (including)
Vmware_workstation Vmware 6.0.3 (including) 6.0.3 (including)
Workstation Vmware 5.5.1 (including) 5.5.1 (including)
Workstation Vmware 5.5.3 (including) 5.5.3 (including)
Workstation Vmware 5.5.4 (including) 5.5.4 (including)
Workstation Vmware 6.0 (including) 6.0 (including)
Esx Vmware 3.0.0 (including) 3.0.0 (including)
Esx Vmware 3.0.1 (including) 3.0.1 (including)
Esx Vmware 3.0.2 (including) 3.0.2 (including)
Vmware-server Ubuntu feisty *
Vmware-server Ubuntu upstream *

References