Lucene search

[email protected]NVD:CVE-2010-4295

HistoryDec 06, 2010 - 9:05 p.m.

CVE-2010-4295

2010-12-0621:05:49

CWE-362

[email protected]

web.nvd.nist.gov

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

26.7%

JSON

Race condition in the mounting process in vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 allows host OS users to gain privileges via vectors involving temporary files.

Affected configurations

Nvd

Node

vmwareworkstationMatch7.0

vmwareworkstationMatch7.0.1

vmwareworkstationMatch7.1

vmwareworkstationMatch7.1.1

vmwareworkstationMatch7.1.2

AND

linuxlinux_kernelMatch-

Node

vmwareplayerMatch3.1

vmwareplayerMatch3.1.1

vmwareplayerMatch3.1.2

AND

linuxlinux_kernelMatch-

Node

vmwareserverMatch2.0.2

AND

linuxlinux_kernelMatch-

Node

vmwarefusionMatch3.1

vmwarefusionMatch3.1.1

vmwarefusionMatch3.1.2

AND

applemac_os_xMatch-

VendorProductVersionCPE
vmwareworkstation7.0cpe:2.3:a:vmware:workstation:7.0:*:*:*:*:*:*:*
vmwareworkstation7.0.1cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*
vmwareworkstation7.1cpe:2.3:a:vmware:workstation:7.1:*:*:*:*:*:*:*
vmwareworkstation7.1.1cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:*
vmwareworkstation7.1.2cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
vmwareplayer3.1cpe:2.3:a:vmware:player:3.1:*:*:*:*:*:*:*
vmwareplayer3.1.1cpe:2.3:a:vmware:player:3.1.1:*:*:*:*:*:*:*
vmwareplayer3.1.2cpe:2.3:a:vmware:player:3.1.2:*:*:*:*:*:*:*
vmwareserver2.0.2cpe:2.3:a:vmware:server:2.0.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
vmware	workstation	7.0	cpe:2.3:a:vmware:workstation:7.0:::::::*
vmware	workstation	7.0.1	cpe:2.3:a:vmware:workstation:7.0.1:::::::*
vmware	workstation	7.1	cpe:2.3:a:vmware:workstation:7.1:::::::*
vmware	workstation	7.1.1	cpe:2.3:a:vmware:workstation:7.1.1:::::::*
vmware	workstation	7.1.2	cpe:2.3:a:vmware:workstation:7.1.2:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
vmware	player	3.1	cpe:2.3:a:vmware:player:3.1:::::::*
vmware	player	3.1.1	cpe:2.3:a:vmware:player:3.1.1:::::::*
vmware	player	3.1.2	cpe:2.3:a:vmware:player:3.1.2:::::::*
vmware	server	2.0.2	cpe:2.3:a:vmware:server:2.0.2:::::::*