CVE-2007-1744

Sažetak

Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.

Reference

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521
http://secunia.com/advisories/25079
http://www.securityfocus.com/archive/1/467936/30/6690/threaded
http://www.securityfocus.com/archive/1/469011/30/6510/threaded
http://www.securityfocus.com/bid/23721
http://www.securitytracker.com/id?1017980
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554
http://www.vupen.com/english/advisories/2007/1592

CVSS

Base:	6.3
Impact:	9.2
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:C/I:C/A:N

Zadnje važnije ažuriranje

16-10-2018 - 16:40

Objavljeno

02-05-2007 - 19:19