CVE-2012-1518

Sažetak

VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.

Reference

http://osvdb.org/81163
http://secunia.com/advisories/48782
http://www.securityfocus.com/bid/53006
http://www.securitytracker.com/id?1026922
http://www.securitytracker.com/id?1026923
http://www.vmware.com/security/advisories/VMSA-2012-0007.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745

CVSS

Base:	8.3
Impact:	10.0
Exploitability:	6.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:A/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-12-2017 - 02:29

Objavljeno

17-04-2012 - 21:55