Lucene search

[email protected]NVD:CVE-2010-4296

HistoryDec 06, 2010 - 9:05 p.m.

CVE-2010-4296

2010-12-0621:05:49

CWE-863

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

26.7%

JSON

vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via vectors involving shared object files.

Affected configurations

Nvd

Node

vmwareworkstationMatch7.0

vmwareworkstationMatch7.0.1

vmwareworkstationMatch7.1

vmwareworkstationMatch7.1.1

vmwareworkstationMatch7.1.2

AND

linuxlinux_kernelMatch-

Node

vmwareplayerMatch3.1

vmwareplayerMatch3.1.1

vmwareplayerMatch3.1.2

AND

linuxlinux_kernelMatch-

Node

vmwareserverMatch2.0.2

AND

linuxlinux_kernelMatch-

Node

vmwarefusionMatch3.1

vmwarefusionMatch3.1.1

vmwarefusionMatch3.1.2

AND

applemac_os_xMatch-

VendorProductVersionCPE
vmwareworkstation7.0cpe:2.3:a:vmware:workstation:7.0:*:*:*:*:*:*:*
vmwareworkstation7.0.1cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*
vmwareworkstation7.1cpe:2.3:a:vmware:workstation:7.1:*:*:*:*:*:*:*
vmwareworkstation7.1.1cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:*
vmwareworkstation7.1.2cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
vmwareplayer3.1cpe:2.3:a:vmware:player:3.1:*:*:*:*:*:*:*
vmwareplayer3.1.1cpe:2.3:a:vmware:player:3.1.1:*:*:*:*:*:*:*
vmwareplayer3.1.2cpe:2.3:a:vmware:player:3.1.2:*:*:*:*:*:*:*
vmwareserver2.0.2cpe:2.3:a:vmware:server:2.0.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
vmware	workstation	7.0	cpe:2.3:a:vmware:workstation:7.0:::::::*
vmware	workstation	7.0.1	cpe:2.3:a:vmware:workstation:7.0.1:::::::*
vmware	workstation	7.1	cpe:2.3:a:vmware:workstation:7.1:::::::*
vmware	workstation	7.1.1	cpe:2.3:a:vmware:workstation:7.1.1:::::::*
vmware	workstation	7.1.2	cpe:2.3:a:vmware:workstation:7.1.2:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
vmware	player	3.1	cpe:2.3:a:vmware:player:3.1:::::::*
vmware	player	3.1.1	cpe:2.3:a:vmware:player:3.1.1:::::::*
vmware	player	3.1.2	cpe:2.3:a:vmware:player:3.1.2:::::::*
vmware	server	2.0.2	cpe:2.3:a:vmware:server:2.0.2:::::::*