2 matches found
CVE-2010-1139
CVE-2010-1139 is a format-string vulnerability in VMware's vmrun (VMware VIX API 1.6.x) that may allow local users to execute code with the privileges of the listing user. Affected products/versions include VMware Workstation 6.5.x (before 6.5.4 build 246459), VMware Player 2.5.x (before 2.5.4 bu...
CVE-2011-1126
CVE-2011-1126 concerns VMware vmrun (used with VIX API 1.x on Linux and VMware Workstation 6.5.x/7.x) that is vulnerable to local privilege escalation via loading a malicious shared library from an insecure directory. The issue allows a local attacker to gain elevated privileges by exploiting lib...