Description
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Linux, and VMware Fusion 2.x before 2.0.7 build 246742, allows local users to gain privileges via format string specifiers in process metadata.
References (11)
Core 11
Core References
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201209-25.xml
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39206
Patch, Vendor Advisory mailing-list
x_refsource_mlist
http://lists.vmware.com/pipermail/security-announce/2010/000090.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/39407
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2010-0007.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/63606
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39201
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39215
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1023835
Third Party Advisory mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html
Scores
EPSS
0.0033
EPSS Percentile
24.9%
Details
CWE
CWE-134
Status
published
Products (20)
vmware/fusion
2.0
vmware/fusion
2.0.1
vmware/fusion
2.0.2
vmware/fusion
2.0.3
vmware/fusion
2.0.4
vmware/fusion
2.0.5
vmware/fusion
2.0.6
vmware/player
2.5
vmware/player
2.5.1
vmware/player
2.5.2
... and 10 more
Published
Apr 12, 2010
Tracked Since
Feb 18, 2026