CVE-2011-1787

2011-06-0619:55:00

Debian Security Bug Tracker

security-tracker.debian.org

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

25.6%

JSON

Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to gain privileges on the guest OS by mounting a filesystem on top of an arbitrary directory.

OSVersionArchitecturePackageVersionFilename
Debian12allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian11allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian10allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian999allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	11	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	10	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	999	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb