CVE-2009-3281

Sažetak

The vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.

Reference

http://lists.vmware.com/pipermail/security-announce/2009/000066.html
http://secunia.com/advisories/36928
http://securitytracker.com/id?1022981
http://www.vmware.com/security/advisories/VMSA-2009-0013.html
http://www.vupen.com/english/advisories/2009/2811

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

19-10-2009 - 04:00

Objavljeno

16-10-2009 - 16:30