CVE-2013-1406
VMware Workstation 8.x-9.x, Fusion 4.1-5.0, View 4.x-5.x, ESXi 4.0-5.1, ESX 4.0-4.1 Privilege Escalation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-1406. PoCs published by Artem Shishkin.
AI-analyzed exploit summary This exploit targets CVE-2013-1406, a Windows kernel pool overflow vulnerability, by spraying semaphores to create a memory window and manipulate handle tables for privilege escalation. The code includes functions for handle lookup, object address resolution, and pool manipulation.
Description
The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before 5.0.2, VMware View 4.x before 4.6.2 and 5.x before 5.1.2 on Windows, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 does not properly restrict memory allocation by control code, which allows local users to gain privileges via unspecified vectors.
Exploits (1)
This exploit targets CVE-2013-1406, a Windows kernel pool overflow vulnerability, by spraying semaphores to create a memory window and manipulate handle tables for privilege escalation. The code includes functions for handle lookup, object address resolution, and pool manipulation.