Lucene search
HistoryAug 28, 2014 - 3:14 p.m.
CVE-2014-4199
CVSS2
6.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.
Affected configurations
Node
vmwaretools
ORvmwarevm-supportMatch0.88
ORvmwareworkstationRange≤10.0.3
ORvmwareworkstationMatch10.0
ORvmwareworkstationMatch10.0.1
ORvmwareworkstationMatch10.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vmware | tools | * | cpe:2.3:a:vmware:tools:*:*:*:*:*:*:*:* |
| vmware | vm-support | 0.88 | cpe:2.3:a:vmware:vm-support:0.88:*:*:*:*:*:*:* |
| vmware | workstation | * | cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:* |
| vmware | workstation | 10.0 | cpe:2.3:a:vmware:workstation:10.0:*:*:*:*:*:*:* |
| vmware | workstation | 10.0.1 | cpe:2.3:a:vmware:workstation:10.0.1:*:*:*:*:*:*:* |
| vmware | workstation | 10.0.2 | cpe:2.3:a:vmware:workstation:10.0.2:*:*:*:*:*:*:* |
Related
debiancve
debiancve
CVE-2014-4199
2014-08-28 15:14:09
cvelist
cvelist
CVE-2014-4199
2014-08-28 15:00:00
cve
cve
CVE-2014-4199
2014-08-28 15:14:09
ubuntucve
ubuntucve
CVE-2014-4199
2014-08-28 00:00:00
prion
prion
Code injection
2014-08-28 15:14:00
packetstorm
packetstorm
vm-support 0.88 File Overwrite / Information Disclosure
2014-08-26 00:00:00
CVSS2
6.3
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2014-4199