CVE-2013-3519
VMware ESXi 4.0-5.1 and ESX 4.0-4.1 - Privilege Escalation via lgtosync.sys Memory Allocation
Title source: llmDescription
lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x before 5.0.3, VMware Fusion 5.x before 5.0.4, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1, when a 32-bit Windows guest OS is used, allows guest OS users to gain guest OS privileges via an application that performs a crafted memory allocation.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2013-0014.html
Scores
EPSS
0.0017
EPSS Percentile
37.8%
Details
CWE
CWE-264
Status
published
Products (16)
vmware/esx
4.0
vmware/esx
4.1
vmware/esxi
4.0
vmware/esxi
4.1
vmware/esxi
5.0
vmware/esxi
5.1
vmware/fusion
5.0
vmware/fusion
5.0.1
vmware/fusion
5.0.2
vmware/fusion
5.0.3
... and 6 more
Published
Dec 04, 2013
Tracked Since
Feb 18, 2026