Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-1406
HistoryFeb 11, 2013 - 10:55 p.m.

CVE-2013-1406

2013-02-1122:55:01
CWE-20
[email protected]
web.nvd.nist.gov
6

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

26.8%

JSON

The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before 5.0.2, VMware View 4.x before 4.6.2 and 5.x before 5.1.2 on Windows, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 does not properly restrict memory allocation by control code, which allows local users to gain privileges via unspecified vectors.

Affected configurations

Nvd
Node
vmwareworkstationMatch8.0
OR
vmwareworkstationMatch8.0.0.18997
OR
vmwareworkstationMatch8.0.1
OR
vmwareworkstationMatch8.0.1.27038
OR
vmwareworkstationMatch8.0.2
OR
vmwareworkstationMatch8.0.3
OR
vmwareworkstationMatch8.0.4
OR
vmwareworkstationMatch9.0
AND
microsoftwindows
Node
vmwarefusionMatch4.1
OR
vmwarefusionMatch4.1.1
OR
vmwarefusionMatch4.1.2
OR
vmwarefusionMatch4.1.3
OR
vmwarefusionMatch5.0
OR
vmwarefusionMatch5.0.1
Node
vmwareviewMatch4.0.0
OR
vmwareviewMatch4.0.0u2
OR
vmwareviewMatch4.5
OR
vmwareviewMatch4.6.0
OR
vmwareviewMatch4.6.1
OR
vmwareviewMatch5.0
OR
vmwareviewMatch5.0.0
OR
vmwareviewMatch5.0.0u2
OR
vmwareviewMatch5.0.1
OR
vmwareviewMatch5.1.0
OR
vmwareviewMatch5.1.1
AND
microsoftwindows
Node
vmwareesxiMatch4.0
OR
vmwareesxiMatch4.01
OR
vmwareesxiMatch4.02
OR
vmwareesxiMatch4.03
OR
vmwareesxiMatch4.04
OR
vmwareesxiMatch4.1
OR
vmwareesxiMatch4.11
OR
vmwareesxiMatch4.12
OR
vmwareesxiMatch5.0
OR
vmwareesxiMatch5.01
OR
vmwareesxiMatch5.02
OR
vmwareesxiMatch5.1
Node
vmwareesxMatch4.0
OR
vmwareesxMatch4.1

Related

nessus 7
vmware 2
msvr 1
seebug 1
cvelist 1
exploitpack 1
prion 1
cve 1
openvas 2
exploitdb 1
nessus
nessus
VMware ESX / ESXi VMCI Privilege Escalation (VMSA-2013-0002) (remote check)
2016-03-04 00:00:00
VMware View 4.x < 4.6.2 / 5.x < 5.1.2 VMCI Privilege Escalation (VMSA-2013-0002)
2013-02-27 00:00:00
VMware Workstation 8.x < 8.0.5 / 9.x < 9.0.1 VMCI Privilege Escalation (VMSA-2013-0002)
2013-02-27 00:00:00
vmware
vmware
VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
2013-02-07 00:00:00
VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
2013-02-07 00:00:00
msvr
msvr
Vulnerability in VMware VMCI.sys Could Allow Local Elevation of Privilege
2013-02-19 00:00:00
seebug
seebug
Conceptronic C54APM HTTPεΊ”η­”ζ‹†εˆ†ζΌζ΄ž
2014-01-13 00:00:00
cvelist
cvelist
CVE-2013-1406
2013-02-11 22:00:00
exploitpack
exploitpack
VMware Virtual Machine Communication Interface (VMCI) - vmci.sys
2013-03-06 00:00:00
prion
prion
Design/Logic Flaw
2013-02-11 22:55:00
cve
cve
CVE-2013-1406
2013-02-11 22:55:01
openvas
openvas
VMSA-2013-0002 VMware ESX, Workstation, Fusion, and View VMCI privilege escalation vulnerability
2013-02-14 00:00:00
VMware ESXi/ESX VMCI privilege escalation vulnerability (VMSA-2013-0002)
2013-02-14 00:00:00
exploitdb
exploitdb
VMware Virtual Machine Communication Interface (VMCI) - &#039;vmci.sys&#039;
2013-03-06 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.001

Percentile

26.8%

JSON
Related for NVD:CVE-2013-1406
nessus7vmware2msvr1seebug1cvelist1exploitpack1prion1cve1openvas2exploitdb1