Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x prior to 6.5.4 build 246459, VMware Player 2.5.x prior to 2.5.4 build 246459, and VMware Server 2.x on Linux, and VMware Fusion 2.x prior to 2.0.7 build 246742, allows local users to gain privileges via format string specifiers in process metadata.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware workstation 6.5.3 |
||
vmware workstation 6.5.0 |
||
vmware workstation 6.5.1 |
||
vmware workstation 6.5.2 |
||
vmware player 2.5.1 |
||
vmware player 2.5.2 |
||
vmware player 2.5 |
||
vmware player 2.5.3 |
||
vmware server 2.0.1 |
||
vmware server 2.0.2 |
||
vmware server 2.0.0 |
||
vmware fusion 2.0.4 |
||
vmware fusion 2.0.5 |
||
vmware fusion 2.0.6 |
||
vmware fusion 2.0.1 |
||
vmware fusion 2.0.2 |
||
vmware fusion 2.0.3 |
||
vmware fusion 2.0 |
||
vmware vix api 1.6.0 |
||
vmware vix api 1.6.1 |