 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.809797 |
| Kategorie: | General |
| Titel: | VMware Player Code Execution And Privilege Escalation Vulnerabilities(Windows) |
| Zusammenfassung: | VMware Player is prone to code execution and privilege escalation vulnerabilities. |
| Beschreibung: | Summary: VMware Player is prone to code execution and privilege escalation vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - Insecure process threads permissions. - Format string error in VMware OVF Tool. - Untrusted search path error. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code or cause denial-of-service conditions and also gain elevated privileges on the target host. Affected Software/OS: VMware Player version 4.x before 4.0.5 Solution: Upgrade to VMware Player version 4.0.5 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Querverweis: |
BugTraq ID: 56470 BugTraq ID: 56469 BugTraq ID: 56468 Common Vulnerability Exposure (CVE) ID: CVE-2012-3569 http://packetstormsecurity.com/files/120101/VMWare-OVF-Tools-Format-String.html http://technet.microsoft.com/en-us/security/msvr/msvr13-002 http://osvdb.org/87117 http://secunia.com/advisories/51240 XForce ISS Database: vmware-ovf-format-string(79922) https://exchange.xforce.ibmcloud.com/vulnerabilities/79922 Common Vulnerability Exposure (CVE) ID: CVE-2012-5458 http://www.securityfocus.com/bid/56469 http://osvdb.org/87118 XForce ISS Database: workstation-player-priv-esc(79924) https://exchange.xforce.ibmcloud.com/vulnerabilities/79924 Common Vulnerability Exposure (CVE) ID: CVE-2012-5459 http://www.securityfocus.com/bid/56470 http://osvdb.org/87119 XForce ISS Database: workstation-dll-code-exec(79923) https://exchange.xforce.ibmcloud.com/vulnerabilities/79923 |
| Copyright | Copyright (C) 2017 Greenbone Networks GmbH |
| Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |