CVE-2011-1681
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.3%
vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| vmware:open-vm-tools | vmware open-vm-tools | le | 8.4.2-261024 |
References
openwall.com/lists/oss-security/2011/03/04/10
openwall.com/lists/oss-security/2011/03/04/11
openwall.com/lists/oss-security/2011/03/04/12
openwall.com/lists/oss-security/2011/03/04/9
openwall.com/lists/oss-security/2011/03/05/3
openwall.com/lists/oss-security/2011/03/05/7
openwall.com/lists/oss-security/2011/03/07/9
openwall.com/lists/oss-security/2011/03/14/16
openwall.com/lists/oss-security/2011/03/14/5
openwall.com/lists/oss-security/2011/03/14/7
openwall.com/lists/oss-security/2011/03/15/6
openwall.com/lists/oss-security/2011/03/22/4
openwall.com/lists/oss-security/2011/03/22/6
openwall.com/lists/oss-security/2011/03/31/3
openwall.com/lists/oss-security/2011/03/31/4
openwall.com/lists/oss-security/2011/04/01/2
secunia.com/advisories/44904
bugzilla.redhat.com/show_bug.cgi?id=688980
exchange.xforce.ibmcloud.com/vulnerabilities/66699
hermes.opensuse.org/messages/8711677
Related
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.3%