CVE-2010-4297

VMware Workstation/Player/Fusion/ESXi/ESX Command Injection via VMware Tools Update

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4297. PoCs published by Nahuel Grisolia.

AI-analyzed exploit summary This is a detailed advisory describing an OS command injection vulnerability in VMware Tools (CVE-2010-4297). The writeup includes technical details, affected versions, and a proof-of-concept example demonstrating how crafted input can lead to remote command execution with root privileges on a guest VM.

Description

The VMware Tools update functionality in VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548; VMware Player 2.5.x before 2.5.5 build 328052 and 3.1.x before 3.1.2 build 301548; VMware Server 2.0.2; VMware Fusion 2.x before 2.0.8 build 328035 and 3.1.x before 3.1.2 build 332101; VMware ESXi 3.5, 4.0, and 4.1; and VMware ESX 3.0.3, 3.5, 4.0, and 4.1 allows host OS users to gain privileges on the guest OS via unspecified vectors, related to a "command injection" issue.

Exploits (1)

exploitdb WRITEUP

by Nahuel Grisolia · textremotemultiple

https://www.exploit-db.com/exploits/15717

View Code ZIP pw:eip

This is a detailed advisory describing an OS command injection vulnerability in VMware Tools (CVE-2010-4297). The writeup includes technical details, affected versions, and a proof-of-concept example demonstrating how crafted input can lead to remote command execution with root privileges on a guest VM.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: VMware Tools (various versions across VMware products)

Auth required

Prerequisites: Access to VMware Server Infrastructure Web Access · Valid session (JSESSIONID cookie) · VMware Tools installed but not fully updated on the guest VM

MITRE ATT&CK

T1202 - Indirect Command Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →