CVE-2013-1662

Vmware Workstation - Access Control

Title source: rule

Description

vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in a directory in the PATH, related to use of the popen library function.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocallinux

https://www.exploit-db.com/exploits/27938

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Tavis Ormandy · textlocallinux

https://www.exploit-db.com/exploits/40169

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Tavis Ormandy, egypt · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/vmware_mount.rb

View Code ZIP pw:eip

References (2)

[Vendor Advisory] http://www.vmware.com/security/advisories/VMSA-2013-0010.html

[Various Sources] http://blog.cmpxchg8b.com/2013/08/security-debianisms.html

Scores

EPSS 0.0614

EPSS Percentile 90.8%

Details

CWE

CWE-264

Status published

Products (23)

vmware/player 4.0

vmware/player 4.0.0.18997

vmware/player 4.0.1

vmware/player 4.0.2

vmware/player 4.0.3

vmware/player 4.0.4

vmware/player 4.0.5

vmware/player 4.0.6

vmware/player 5.0

vmware/player 5.0.1

... and 13 more

Published Aug 24, 2013

Tracked Since Feb 18, 2026