VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
BID:25110
Info
VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
| Bugtraq ID: | 25110 |
| Class: | Design Error |
| CVE: |
CVE-2007-4059 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 28 2007 12:00AM |
| Updated: | Sep 20 2007 07:00PM |
| Credit: | callAX, and the GOODFELLAS Security Research TEAM discovered this vulnerability. |
| Vulnerable: |
VMWare Workstation 6.0 VMWare Workstation 5.5.4 build 44386 VMWare Workstation 5.5.4 VMWare Workstation 5.5.3 build 42958 VMWare Workstation 5.5.3 build 34685 VMWare Workstation 4.5.2 VMWare Server 1.0.3 VMWare Player 2.0 VMWare Player 1.0.4 VMWare ACE 2.0 VMWare ACE 1.0.3 |
| Not Vulnerable: |
VMWare Workstation 6.0.1 VMWare Workstation 5.5.5 VMWare Server 1.0.4 VMWare Player 2.0.1 VMWare Player 1.0.5 VMWare ACE 2.0.1 VMWare ACE 1.0.4 |
Discussion
VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
An ActiveX control installed with VMware is prone to a vulnerability that lets attackers overwrite arbitrary files.
An attacker can exploit this issue to overwrite arbitrary files on the victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). Successful exploits will allow the attacker to cause denial-of-service conditions; other consequences are possible.
This issue affects VMware 5.5.3.42958; other versions may also be affected.
An ActiveX control installed with VMware is prone to a vulnerability that lets attackers overwrite arbitrary files.
An attacker can exploit this issue to overwrite arbitrary files on the victim's computer in the context of the vulnerable application using the ActiveX control (typically Internet Explorer). Successful exploits will allow the attacker to cause denial-of-service conditions; other consequences are possible.
This issue affects VMware 5.5.3.42958; other versions may also be affected.
Exploit / POC
VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to view a maliciously crafted web page.
The following exploit is available:
To exploit this issue, an attacker must entice an unsuspecting user to view a maliciously crafted web page.
The following exploit is available:
Solution / Fix
VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
Solution:
The vendor has released an advisory with fixes to address this issue. Please see the referenced advisory for details.
Solution:
The vendor has released an advisory with fixes to address this issue. Please see the referenced advisory for details.
References
VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability
References:
References:
- Microsoft Knowledge Base Article 240797 (Microsoft)
- Notes on VMware Workstation 6.0.1, Build 55017 (VMware)
- VMware Homepage (VMware)