HGFS.sys in the VMware Tools package in VMware Workstation 5.x before 5.5.6 build 80404, VMware Player before 1.0.6 build 80404, VMware ACE before 1.0.5 build 79846, VMware Server before 1.0.5 build 80187, and VMware ESX 2.5.4 through 3.0.2 does not properly validate arguments in user-mode METHOD_NEITHER IOCTLs to the \\.\hgfs device, which allows guest OS users to modify arbitrary memory locations in guest kernel memory and gain privileges.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-06-05T20:21:00
Updated: 2018-10-15T20:57:01
Reserved: 2007-10-23T00:00:00
Link: CVE-2007-5671
JSON object: View
NVD Information
Status : Modified
Published: 2008-06-05T20:32:00.000
Modified: 2018-10-30T16:26:23.590
Link: CVE-2007-5671
JSON object: View
Redhat Information
No data.
CWE