CVE-2014-4199

Опубликовано: 26 авг. 2014

Источник: redhat

CVSS2: 2.1

Описание

vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
CloudForms Management Engine 5	open-vm-tools	Will not fix
Red Hat Enterprise Linux 7	open-vm-tools	Fixed	RHBA-2015:2246	19.11.2015

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-377

https://bugzilla.redhat.com/show_bug.cgi?id=1165899open-vm-tools: insecure temporary file creation

2.1 Low

CVSS2

Связанные уязвимости

CVE-2014-4199

ubuntu

больше 11 лет назад

vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.

CVE-2014-4199

nvd

больше 11 лет назад

vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.

CVE-2014-4199

debian

больше 11 лет назад

vm-support 0.88 in VMware Tools, as distributed with VMware Workstatio ...

GHSA-v55p-68fc-xxcv

github

больше 3 лет назад

vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.

2.1 Low

CVSS2