VMware Products Privilege Escalation Vulnerability (VMSA-2009-0015)

high Nessus Plugin ID 42308

Synopsis

The remote host has a virtualization application affected by a privilege escalation vulnerability.

Description

A VMware product (Workstation, Player, ACE, or Server) detected on the remote host has a privilege escalation vulnerability. Page fault exceptions are not handled properly, which could allow a local attacker to elevate privileges within the guest VM. This vulnerability reportedly does not affect the host system.

Solution

Upgrade to :

- VMware Workstation 6.5.3 or later.
- VMware Server 2.0.2 / 1.0.10 or later.
- VMware Player 2.5.3 or later.
- VMware ACE 2.5.3 or later.

See Also

https://www.vmware.com/security/advisories/VMSA-2009-0015.html

http://lists.vmware.com/pipermail/security-announce/2009/000069.html

Plugin Details

Severity: High

ID: 42308

File Name: vmware_multiple_vmsa_2009_0015.nasl

Version: 1.14

Type: local

Agent: windows

Family: Windows

Published: 10/29/2009

Updated: 3/27/2024

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.0

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2009-2267

Vulnerability Information

CPE: cpe:/a:vmware:ace, cpe:/a:vmware:vmware_player, cpe:/a:vmware:vmware_server, cpe:/a:vmware:vmware_workstation

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 10/27/2009

Vulnerability Publication Date: 10/27/2009

Reference Information

CVE: CVE-2009-2267

BID: 36841

Secunia: 37172

VMSA: 2009-0015