VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
BID:39394
CVE-2010-1142 |Info
VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
| Bugtraq ID: | 39394 |
| Class: | Design Error |
| CVE: |
CVE-2010-1142 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 09 2010 12:00AM |
| Updated: | Oct 01 2012 07:10PM |
| Credit: | Mitja Kolsek of ACROS Security |
| Vulnerable: |
VMWare Workstation 6.5.3 VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare Workstation 6.5 build 118166 VMWare VIX API 1.6 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 2.0.1 build 156745 VMWare Server 2.0.1 VMWare Server 2.0 VMWare Player 2.5.3 VMWare Player 2.5.2 VMWare Player 2.5.1 VMWare Player 2.5 build 118166 VMWare Fusion 2.0.6 Build 196839 VMWare Fusion 2.0.6 VMWare Fusion 2.0.5 VMWare Fusion 2.0.4 VMWare Fusion 2.0.3 VMWare Fusion 2.0.2 build 147997 VMWare Fusion 3.0 VMWare Fusion 2 VMWare ESXi Server 4.0 VMWare ESXi Server 3.5 VMWare ESX Server 3.0.3 VMWare ESX Server 2.5.5 VMWare ESX Server 4.0 VMWare ESX Server 3.5 VMWare ACE 2.5.3 Build 185404 VMWare ACE 2.5.2 build 156735 VMWare ACE 2.5.2 VMWare ACE 2.5.1 VMWare ACE 2.5 build 118166 VMWare ACE 2.6 Gentoo Linux |
| Not Vulnerable: | |
Discussion
VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
Multiple VMware products are prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to execute arbitrary code with elevated privileges; this may aid in other attacks. This issue only affects guest systems running on Windows.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Multiple VMware products are prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to execute arbitrary code with elevated privileges; this may aid in other attacks. This issue only affects guest systems running on Windows.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Exploit / POC
VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
An attacker requires local interactive access to a guest operating system to exploit this issue.
An attacker requires local interactive access to a guest operating system to exploit this issue.
Solution / Fix
VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
References
VMware Hosted Products VMware Tools Local Privilege Escalation Vulnerability
References:
References:
- VMware Homepage (VMware)
- ASPR #2010-04-12-2: Local Binary Planting in VMware Tools for Windows (ACROS Security)