Lucene search
Copyright (C) 2008 Greenbone Networks GmbHOPENVAS:1361412562310800072HistoryDec 15, 2008 - 12:00 a.m.
VMware Products Trap Flag In-Guest Privilege Escalation Vulnerability (VMSA-2008-0018) - Linux
2008-12-1500:00:00
Copyright (C) 2008 Greenbone Networks GmbH
plugins.openvas.org
19
6.7 Medium
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
28.0%
VMWare product(s) are prone to a privilege escalation vulnerability.
# Copyright (C) 2008 Greenbone Networks GmbH
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.800072");
script_version("2022-05-11T11:17:52+0000");
script_tag(name:"last_modification", value:"2022-05-11 11:17:52 +0000 (Wed, 11 May 2022)");
script_tag(name:"creation_date", value:"2008-12-15 15:44:51 +0100 (Mon, 15 Dec 2008)");
script_tag(name:"cvss_base", value:"7.2");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_cve_id("CVE-2008-4915", "CVE-2008-4917");
script_name("VMware Products Trap Flag In-Guest Privilege Escalation Vulnerability (VMSA-2008-0018) - Linux");
script_xref(name:"URL", value:"http://www.frsirt.com/english/advisories/2008/3052");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/32168");
script_xref(name:"URL", value:"http://www.vmware.com/security/advisories/VMSA-2008-0018.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 Greenbone Networks GmbH");
script_family("Privilege escalation");
script_dependencies("gb_vmware_prdts_detect_lin.nasl");
script_mandatory_keys("VMware/Linux/Installed");
script_tag(name:"affected", value:"VMware Server 1.x - 1.0.7 on Linux
VMware Player 1.x - 1.0.8 and 2.x - 2.0.5 on Linux
VMware Workstation 6.0.5 and earlier on all Linux");
script_tag(name:"insight", value:"The issue is due to an error in the CPU hardware emulation while
handling the trap flag.");
script_tag(name:"summary", value:"VMWare product(s) are prone to a privilege escalation vulnerability.");
script_tag(name:"solution", value:"Upgrade VMware to the latest version.");
script_tag(name:"impact", value:"Successful exploitation allows attackers to execute arbitrary code
on the affected system and users could bypass certain security restrictions
or can gain escalated privileges.");
script_tag(name:"qod_type", value:"executable_version");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("version_func.inc");
vmserverVer = get_kb_item("VMware/Server/Linux/Ver");
if(vmserverVer)
{
if(version_is_less_equal(version:vmserverVer, test_version:"1.0.7")) {
report = report_fixed_ver(installed_version:vmserverVer, vulnerable_range:"Less than or equal to 1.0.7");
security_message(port: 0, data: report);
}
exit(0);
}
vmplayerVer = get_kb_item("VMware/Player/Linux/Ver");
if(vmplayerVer)
{
if(version_is_less_equal(version:vmplayerVer, test_version:"1.0.8")) {
report = report_fixed_ver(installed_version:vmplayerVer, vulnerable_range:"Less than or equal to 1.0.8");
security_message(port: 0, data: report);
exit(0);
}
else if(version_in_range(version:vmplayerVer, test_version:"2.0", test_version2:"2.0.5")) {
report = report_fixed_ver(installed_version:vmplayerVer, vulnerable_range:"2.0 - 2.0.5");
security_message(port: 0, data: report);
}
exit(0);
}
vmworkstnVer = get_kb_item("VMware/Workstation/Linux/Ver");
if(vmworkstnVer)
{
if(version_in_range(version:vmworkstnVer, test_version:"5.0", test_version2:"5.5.8")) {
report = report_fixed_ver(installed_version:vmworkstnVer, vulnerable_range:"5.0 - 5.5.8");
security_message(port: 0, data: report);
exit(0);
}
else if(version_in_range(version:vmworkstnVer, test_version:"6.0", test_version2:"6.0.5")) {
report = report_fixed_ver(installed_version:vmworkstnVer, vulnerable_range:"6.0 - 6.0.5");
security_message(port: 0, data: report);
}
exit(0);
}
Related
openvas
openvas
nessus
nessus
securityvulns
securityvulns
VMWare sandbox protection bypass
2008-12-04 00:00:00
prion
prion
Memory corruption
2008-12-09 00:30:00
Denial of service
2008-11-10 14:12:00
ubuntucve
ubuntucve
CVE-2008-4915
2008-11-10 00:00:00
seebug
seebug
VMwareθζ瑬仢ε
εη ΄εζΌζ΄
2008-12-05 00:00:00
VMwareδΊ§εTrap Flagε€ηζ¬ε°ζιζεζΌζ΄
2008-11-11 00:00:00
cve
cve
CVE-2008-4917
2008-12-09 00:30:00
CVE-2008-4915
2008-11-10 14:12:00
vmware
vmware
gentoo
gentoo
VMware Player, Server, Workstation: Multiple vulnerabilities
2012-09-29 00:00:00
6.7 Medium
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
28.0%
Related for OPENVAS:1361412562310800072