Directory Traversal Vulnerability in VMware Products
CVE-2008-0923

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
26 February 2008

Summary

A directory traversal vulnerability exists in VMware's Shared Folders feature that allows guest operating system users to access and manipulate arbitrary files on the host system. This flaw arises from the improper handling of multibyte strings containing sequences that denote directory traversal ('..'), enabling an attacker to bypass intended security mechanisms. The exploitation may lead to unauthorized file access and modifications, posing significant risks to the integrity and confidentiality of the host system's data.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.