CVE-2011-1787

2011-06-0619:55:01

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

26.7%

JSON

Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to gain privileges on the guest OS by mounting a filesystem on top of an arbitrary directory.

OSVersionArchitecturePackageVersionFilename
Debian12allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian11allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian999allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian13allopen-vm-tools< 2:8.4.2+2011.08.21-471295-1open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	11	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	999	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb
Debian	13	all	open-vm-tools	< 2:8.4.2+2011.08.21-471295-1	open-vm-tools_2:8.4.2+2011.08.21-471295-1_all.deb