CVE-2011-1126

Sažetak

VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory.

Reference

http://lists.vmware.com/pipermail/security-announce/2011/000131.html
http://secunia.com/advisories/43885
http://secunia.com/advisories/43943
http://securityreason.com/securityalert/8173
http://securitytracker.com/id?1025270
http://www.securityfocus.com/archive/1/517240/100/0/threaded
http://www.securityfocus.com/bid/47094
http://www.vmware.com/security/advisories/VMSA-2011-0006.html
http://www.vupen.com/english/advisories/2011/0816
https://exchange.xforce.ibmcloud.com/vulnerabilities/66472

CVSS

Base:	6.9
Impact:	10.0
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2018 - 19:30

Objavljeno

04-04-2011 - 12:27