VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
BID:39392
Info
VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
| Bugtraq ID: | 39392 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-1141 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2010 12:00AM |
| Updated: | Oct 01 2012 07:10PM |
| Credit: | Jure Skofic and Mitja Kolsek of ACROS Security |
| Vulnerable: |
VMWare Workstation 6.5.3 VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare Workstation 6.5 build 118166 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 2.0.1 build 156745 VMWare Server 2.0.1 VMWare Server 2.0 VMWare Player 2.5.4 VMWare Player 2.5.3 VMWare Player 2.5.2 VMWare Player 2.5.1 VMWare Player 2.5 build 118166 VMWare Movie Decoder 6.5.4 VMWare Fusion 2.0.6 VMWare Fusion 2.0.5 VMWare Fusion 2.0.4 VMWare Fusion 2.0.3 VMWare Fusion 2.0.2 build 147997 VMWare Fusion 2 VMWare ESXi Server 4.0 VMWare ESXi Server 3.5 VMWare ESX Server 3.0.3 VMWare ESX Server 2.5.5 VMWare ESX Server 4.0 VMWare ESX Server 3.5 Gentoo Linux |
| Not Vulnerable: | |
Discussion
VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
Multiple VMware products are prone to a remote code-execution vulnerability that exists in VMware Tools.
An attacker can exploit this issue by enticing a user to open a malicious file from a network share. The issue can be exploited on Windows guest operating systems
Successful exploits will allow attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects the following products:
Workstation
Player
ACE
Server
Fusion
ESX
ESXi
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Multiple VMware products are prone to a remote code-execution vulnerability that exists in VMware Tools.
An attacker can exploit this issue by enticing a user to open a malicious file from a network share. The issue can be exploited on Windows guest operating systems
Successful exploits will allow attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects the following products:
Workstation
Player
ACE
Server
Fusion
ESX
ESXi
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Exploit / POC
VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
References
VMware Hosted Products VMware Tools Library Reference Remote Code Execution Vulnerability
References:
References:
- VMware Homepage (VMware)
- ASPR #2010-04-12-1: Remote Binary Planting in VMware Tools for Windows (ACROS Security)