Untrusted Search Path Vulnerability in VMware Products by VMware
CVE-2008-0967

Currently unrated

Key Information:

Vendor: Vmware
Status: Esx Server; Player; Vmware Server; Vmware Workstation
Vendor: CVE Published:; 5 June 2008

Summary

This vulnerability exists in the vmware-authd component across several VMware products, allowing local users to escalate their privileges by exploiting a misconfigured library path option in a configuration file. If successfully exploited, this vulnerability could lead to unauthorized access and control over the affected systems, increasing the risk of compromise and potential data breaches. Users are encouraged to patch their systems to mitigate this risk and ensure their environments remain secure.

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://www.vupen.com/english/advisories/2008/1744

vdb-entryx_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2008-0009....

x_refsource_CONFIRM

Timeline

Vulnerability published
Jun 5, 2008
Vulnerability Reserved
Feb 25, 2008