VMware 'vmrun' Local Privilege Escalation Vulnerability
BID:39407
CVE-2010-1139 |Info
VMware 'vmrun' Local Privilege Escalation Vulnerability
| Bugtraq ID: | 39407 |
| Class: | Input Validation Error |
| CVE: |
CVE-2010-1139 |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 09 2010 12:00AM |
| Updated: | Oct 01 2012 07:10PM |
| Credit: | Thomas Toth-Steiner |
| Vulnerable: |
VMWare Workstation 6.5.3 VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare Workstation 6.5 build 118166 VMWare Workstation 6.5.3 build 185404 VMWare Workstation 6.5.2 build 156735 VMWare VIX API 1.6 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 2.0.1 build 156745 VMWare Server 2.0.1 VMWare Server 2.0 VMWare Player 2.5.4 VMWare Player 2.5.3 VMWare Player 2.5.2 build 156735 VMWare Player 2.5.2 VMWare Player 2.5.1 VMWare Player 2.5 build 118166 VMWare Player 2.5.3 build 185404 VMWare Fusion 2.0.6 Build 196839 VMWare Fusion 2.0.6 VMWare Fusion 2.0.5 VMWare Fusion 2.0.4 VMWare Fusion 2.0.3 VMWare Fusion 2.0.2 build 147997 VMWare Fusion 2 Gentoo Linux |
| Not Vulnerable: |
VMWare Workstation 6.5.4 build 246459 VMWare VIX API 1.7 VMWare Player 2.5.4 build 246459 VMWare Fusion 2.0.7 Build 246742 |
Discussion
VMware 'vmrun' Local Privilege Escalation Vulnerability
Multiple VMware products are prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to execute arbitrary code with elevated privileges on a host running the affected applications.
The issue affects VMware VIX API, Workstation, Player, Server, and Fusion.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Multiple VMware products are prone to a local privilege-escalation vulnerability.
Local attackers can exploit this issue to execute arbitrary code with elevated privileges on a host running the affected applications.
The issue affects VMware VIX API, Workstation, Player, Server, and Fusion.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it.
Exploit / POC
VMware 'vmrun' Local Privilege Escalation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
VMware 'vmrun' Local Privilege Escalation Vulnerability
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
Solution:
The vendor has released an advisory and patches. Please see the references for more information.