HGFS.sys in the VMware Tools package in VMware Workstation 5.x prior to 5.5.6 build 80404, VMware Player prior to 1.0.6 build 80404, VMware ACE prior to 1.0.5 build 79846, VMware Server prior to 1.0.5 build 80187, and VMware ESX 2.5.4 up to and including 3.0.2 does not properly validate arguments in user-mode METHOD_NEITHER IOCTLs to the \\.\hgfs device, which allows guest OS users to modify arbitrary memory locations in guest kernel memory and gain privileges.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
vmware ace 1.0.0 |
||
vmware ace 1.0.1 |
||
vmware esx 3.0.1 |
||
vmware ace 1.0.4 |
||
vmware esx 2.5.4 |
||
vmware vmware player 1.0.0 |
||
vmware vmware player 1.0.1 |
||
vmware vmware workstation 5.5.0 |
||
vmware vmware workstation 5.5.2 |
||
vmware esx server 2.5.5 |
||
vmware esx 3.0.0 |
||
vmware vmware player 1.0.2 |
||
vmware vmware player 1.0.3 |
||
vmware vmware workstation 5.5.5 |
||
vmware workstation 5.5.1 |
||
vmware esx 3.0.2 |
||
vmware vmware player 1.0.5 |
||
vmware vmware server 1.0.0 |
||
vmware vmware server 1.0.1 |
||
vmware workstation 5.5.3 |
||
vmware workstation 5.5.4 |
||
vmware ace 1.0.2 |
||
vmware ace 1.0.3 |
||
vmware player 1.0.4 |
||
vmware server 1.0.3 |
||
vmware vmware server 1.0.2 |
||
vmware vmware server 1.0.4 |
Vulmon