CVE-2011-1126

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 04-04-2011 02:27

Last modified: - 23-01-2023 07:44

Total changes: - 8

Description

VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:M/Au:N/C:C/I:C/A:C

Low

Attack complexity

Local

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

6.9

Base score

3.4

10.0

Exploitability score

Impact score

Verification logic

Reference

43943-Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2011-0006.html
47094-
ADV-2011-0816-Vendor Advisory
43885-Vendor Advisory
1025270-
[security-announce] 20110330 UPDATED VMSA-2011-0006.1 VMware vmrun utility local privilege escalation-Vendor Advisory
8173-
vmware-vmrun-privilege-escalation(66472)-
20110330 VMSA-2011-0006 VMware vmrun utility local privilege escalation-

Keywords

CVE-2011-1126

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2011-1126

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures