| Title | 複数の VMware 製品の vmware-mount における権限昇格の脆弱性 |
|---|---|
| Summary | 複数の VMware 製品の vmware-mount には、共有オブジェクトファイルに関する処理に不備があり、ライブラリを適切にロードしないため、権限を取得される脆弱性が存在します。 |
| Possible impacts | ホスト OS ユーザにより、権限を取得される可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | Dec. 2, 2010, midnight |
| Registration Date | Dec. 27, 2010, 3:38 p.m. |
| Last Update | Dec. 27, 2010, 3:38 p.m. |
| CVSS2.0 : 危険 | |
| Score | 7.2 |
|---|---|
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
| VMware |
| VMware Fusion 3.1.x |
| VMware Player 3.1.x |
| VMware Server 2.0.2 |
| VMware Workstation 7.x |
| No | Changed Details | Date of change |
|---|---|---|
| 0 | [2010年12月27日] 掲載 |
Feb. 17, 2018, 10:37 a.m. |
| Summary | vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via vectors involving shared object files. |
|---|---|
| Publication Date | Dec. 7, 2010, 6:05 a.m. |
| Registration Date | Jan. 29, 2021, 11:08 a.m. |
| Last Update | Nov. 21, 2024, 10:20 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:vmware:workstation:7.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:workstation:7.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | ||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:a:vmware:player:3.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:player:3.1.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:player:3.1.2:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | ||||
| Configuration3 | or higher | or less | more than | less than | |
| cpe:2.3:a:vmware:server:2.0.2:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | ||||
| Configuration4 | or higher | or less | more than | less than | |
| cpe:2.3:a:vmware:fusion:3.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:fusion:3.1.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:vmware:fusion:3.1.2:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:* | ||||