CVE-2011-2145
VMware ESX/ESXi 3.0.3-4.1 and Workstation/Fusion/Player 7.1.x/3.1.x - Arbitrary File Modification via HGFS mount.vmhgfs
Title source: llmDescription
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1, when a Solaris or FreeBSD guest OS is used, allows guest OS users to modify arbitrary guest OS files via unspecified vectors, related to a "procedural error."
References (7)
Core 7
Core References
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44904
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/48098
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2011-0009.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/67815
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44840
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1025601
Various Sources vendor-advisory
x_refsource_suse
https://hermes.opensuse.org/messages/8711677
Scores
EPSS
0.0008
EPSS Percentile
22.7%
Details
CWE
CWE-264
Status
published
Products (17)
vmware/esx
3.0.3
vmware/esx
3.5
vmware/esx
4.0
vmware/esx
4.1
vmware/esxi
3.5
vmware/esxi
4.0
vmware/esxi
4.1
vmware/fusion
3.1
vmware/fusion
3.1.1
vmware/fusion
3.1.2
... and 7 more
Published
Jun 06, 2011
Tracked Since
Feb 18, 2026