Lucene search
HistoryAug 28, 2014 - 3:14 p.m.
CVE-2014-4199
vmware
security
cve-2014-4199
symlink attack
vmware tools
nvd
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.
Affected configurations
Node
vmwaretools
ORvmwarevm-supportMatch0.88
ORvmwareworkstationRange≤10.0.3
ORvmwareworkstationMatch10.0
ORvmwareworkstationMatch10.0.1
ORvmwareworkstationMatch10.0.2
Related
nvd
nvd
CVE-2014-4199
2014-08-28 15:14:09
ubuntucve
ubuntucve
CVE-2014-4199
2014-08-28 00:00:00
prion
prion
Code injection
2014-08-28 15:14:00
debiancve
debiancve
CVE-2014-4199
2014-08-28 15:14:09
cvelist
cvelist
CVE-2014-4199
2014-08-28 15:00:00
packetstorm
packetstorm
vm-support 0.88 File Overwrite / Information Disclosure
2014-08-26 00:00:00
6.3 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-4199