CVE-2008-0967

Currently unrated

Key Information:

Vendor: Vmware
Status: Esx Server; Player; Vmware Server; Vmware Workstation
Vendor: CVE Published:; 5 June 2008

Summary

Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware ESX 2.5.4 through 3.5, allows local users to gain privileges via a library path option in a configuration file.

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://www.vupen.com/english/advisories/2008/1744

vdb-entryx_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2008-0009....

x_refsource_CONFIRM

Timeline

Vulnerability published
Jun 5, 2008
Vulnerability Reserved
Feb 25, 2008