Description
VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/kb/enduser/std_adp.php?p_sid=dsxk%2ABWh&p_lva=&p_faqid=1108
Patch vdb-entry
x_refsource_osvdb
http://www.osvdb.org/21585
Patch x_refsource_confirm
http://www.vmware.com/download/esx/esx152-patch4.html
Scores
EPSS
0.0003
EPSS Percentile
10.4%
Details
Status
published
Products (1)
vmware/esx
1.5.2 patch1 (3 CPE variants)
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026