Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-5191

Опубликовано: 28 июл. 2017
Источник: debian
EPSS Низкий

Описание

VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Пакеты

ПакетСтатусВерсия исправленияРелизТип
open-vm-toolsfixed2:10.1.5-5055683-5package
open-vm-toolsfixed2:10.1.5-5055683-4+deb9u1stretchpackage
open-vm-toolsnot-affectedjessiepackage
open-vm-toolsnot-affectedwheezypackage

Примечания

  • 9.10.x: https://github.com/vmware/open-vm-tools/commit/c1304ce8bfd9c0c33999e496bf7049d5c3d45821

  • 10.0.x: https://github.com/vmware/open-vm-tools/commit/b3068b04880eda4ca3e13f2d34fb8ce336ad1a4f

  • 10.1.x: https://github.com/vmware/open-vm-tools/commit/22e58289f71232310d30cf162b83b5151a937bac

EPSS

Процентиль: 20%
0.00066
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2015-5191

CVSS3: 6.7
ubuntu
больше 8 лет назад

VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

redhat логотип

CVE-2015-5191

redhat
больше 8 лет назад

VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

nvd логотип

CVE-2015-5191

CVSS3: 6.7
nvd
больше 8 лет назад

VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

suse-cvrf логотип

openSUSE-SU-2017:0827-1

suse-cvrf
почти 9 лет назад

Security update for open-vm-tools

suse-cvrf логотип

openSUSE-SU-2017:0509-1

suse-cvrf
почти 9 лет назад

Security update for open-vm-tools

EPSS

Процентиль: 20%
0.00066
Низкий