Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
VMware Products Multiple Vulnerabilities (Windows) - jun 11
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is installed with VMWare product(s) which are vulnerable to multiple vulnerabilities.
Insight
Insight
Multiple flaws are due to, - An information disclosure vulnerability in 'Mount.vmhgfs', allows guest OS users to determine the existence of host OS files and directories via unspecified vectors. - A race condition privilege escalation in 'Mount.vmhgfs' via a race condition, that allows guest OS users to gain privileges on the guest OS by mounting a file system on top of an arbitrary directory.
Affected Software
Affected Software
VMware Player 3.1.x before 3.1.4 VMware Workstation 7.1.x before 7.1.4 on Windows.
Solution
Solution
Apply the patch or upgrade to player 3.1.4 or later, Apply the patch or upgrade to VMware Workstation 7.1.4 or later, ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****
Common Vulnerabilities and Exposures (CVE)
References
- http://www.vmware.com/security/advisories/VMSA-2011-0009.html
- http://lists.vmware.com/pipermail/security-announce/2011/000141.html
- http://www.vmware.com/products/player/
- http://downloads.vmware.com/d/info/desktop_downloads/vmware_player/3_0
- http://downloads.vmware.com/d/info/desktop_downloads/vmware_workstatio