VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Workstation | Vmware | 8.0 (including) | 8.0 (including) |
| Workstation | Vmware | 8.0.1 (including) | 8.0.1 (including) |
References
- http://osvdb.org/81163
- http://secunia.com/advisories/48782
- http://www.securityfocus.com/bid/53006
- http://www.securitytracker.com/id?1026922
- http://www.securitytracker.com/id?1026923
- http://www.vmware.com/security/advisories/VMSA-2012-0007.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745
- http://osvdb.org/81163
- http://secunia.com/advisories/48782
- http://www.securityfocus.com/bid/53006
- http://www.securitytracker.com/id?1026922
- http://www.securitytracker.com/id?1026923
- http://www.vmware.com/security/advisories/VMSA-2012-0007.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745