Privilege Escalation Vulnerability in VMware Workstation and Player by VMware
CVE-2008-1362

Currently unrated

Key Information:

Vendor: Vmware
Status: Ace; Player; Workstation; Vmware Workstation
Vendor: CVE Published:; 20 March 2008

Summary

A vulnerability in VMware Workstation, Player, ACE, and Server allows local users to escalate privileges or cause a denial of service by exploiting an insecurely created named pipe. This flaw facilitates impersonation of the authd process, leading to unauthorized access to system resources.

References

http://security.gentoo.org/glsa/glsa-201209-25.xml

vendor-advisoryx_refsource_GENTOO

http://securityreason.com/securityalert/3755

third-party-advisoryx_refsource_SREASON

http://www.vmware.com/support/server/doc/releasenotes_ser...

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 20, 2008
Vulnerability Reserved
Mar 17, 2008