Privilege Escalation Vulnerability in VMware Workstation and Player
CVE-2008-1361

Currently unrated

Key Information:

Vendor: Vmware
Status: Ace; Vmware Server; Player; Workstation
Vendor: CVE Published:; 20 March 2008

Summary

Local users may exploit a vulnerability in VMware products to gain elevated privileges due to an issue with the authd process that can connect to arbitrary named pipes. This manipulation can lead to unauthorized access to system resources, thereby compromising the integrity and confidentiality of user data.

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://securityreason.com/securityalert/3755

third-party-advisoryx_refsource_SREASON

http://www.vmware.com/support/server/doc/releasenotes_ser...

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 20, 2008
Vulnerability Reserved
Mar 17, 2008