Vulnerability & Exploit Database

Back to search

VMware Player: Local Privilege Escalation on Windows based platforms by Hijacking VMware VMX configuration file (VMSA-2008-0005) (CVE-2008-1363)

Severity CVSS Published Added Modified
7 (AV:L/AC:L/Au:N/C:C/I:C/A:C) March 19, 2008 November 30, 2013 February 13, 2014

Description

VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation of a config.ini file located in an Application Data folder, which can be used for "hijacking the VMX process."

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

vmware-player-upgrade-1_0_6

Related Vulnerabilities