CVE-2007-5671

2008-06-0520:32:00

CWE-20

[email protected]

web.nvd.nist.gov

vmware

vmware tools

cve-2007-5671

privilege escalation

security vulnerability

ioctl

memory corruption

6.5 Medium

AI Score

Confidence

High

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

25.6%

JSON

HGFS.sys in the VMware Tools package in VMware Workstation 5.x before 5.5.6 build 80404, VMware Player before 1.0.6 build 80404, VMware ACE before 1.0.5 build 79846, VMware Server before 1.0.5 build 80187, and VMware ESX 2.5.4 through 3.0.2 does not properly validate arguments in user-mode METHOD_NEITHER IOCTLs to the \.\hgfs device, which allows guest OS users to modify arbitrary memory locations in guest kernel memory and gain privileges.

CPENameOperatorVersion
vmware:vmware_playervmware vmware playereq1.0.3
vmware:acevmware aceeq1.0.1
vmware:vmware_servervmware vmware servereq1.0.1
vmware:vmware_playervmware vmware playereq1.0.2
vmware:vmware_playervmware vmware playereq1.0.5
vmware:acevmware aceeq1.0.2
vmware:vmware_playervmware vmware playereq1.0.0
vmware:acevmware aceeq1.0.0
vmware:vmware_workstationvmware vmware workstationeq5.5.5
vmware:workstationvmware workstationeq5.5.3

CPE	Name	Operator	Version
vmware:vmware_player	vmware vmware player	eq	1.0.3
vmware:ace	vmware ace	eq	1.0.1
vmware:vmware_server	vmware vmware server	eq	1.0.1
vmware:vmware_player	vmware vmware player	eq	1.0.2
vmware:vmware_player	vmware vmware player	eq	1.0.5
vmware:ace	vmware ace	eq	1.0.2
vmware:vmware_player	vmware vmware player	eq	1.0.0
vmware:ace	vmware ace	eq	1.0.0
vmware:vmware_workstation	vmware vmware workstation	eq	5.5.5
vmware:workstation	vmware workstation	eq	5.5.3