VMware Multiple Products VMCI Privilege Escalation
VMware Multiple Products VMCI Privilege Escalation Vulnerability
Release Date : 2013-02-08
Criticality level : Less critical
Impact : Privilege escalation
Where : Local system
Solution Status : Vendor Patch
Operating System :
VMware ESX Server 4.x
VMware ESX Server 5.x
VMware ESXi 4.x
VMware ESXi 5.x
VMware Fusion 4.x
VMware Fusion 5.x
VMware View 4.x
VMware View 5.x
VMware Workstation 8.x
VMware Workstation 9.x
A vulnerability has been reported in VMware ESX and ESXi Server, Workstation, Fusion, and View, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to potentially gain escalated privileges.
The vulnerability is caused due to an error in vmci.sys when handling control code, which can be exploited to manipulate the memory allocation through the Virtual Machine Communication Interface (VMCI) code.
Successful exploitation requires a Windows-based host or guest operating system.
The vulnerability is reported in the following products and versions:
* VMware Workstation versions 8.x prior to 8.0.5 and 9.x prior to 9.0.1 running on Windows
* VMware Fusion versions 4.x prior to 4.1.4 and 5.x prior to 5.0.2 running on Mac OS X
* VMware View versions 4.x prior to 4.6.2 and 5.x prior to 5.1.2
* VMware ESXi versions 4.0, 4.1, 5.0, 5.1
* VMware ESX versions 4.0 and 4.1
Apply patches or updates.
Provided and/or discovered by:
The vendor independently credits Derek Soeder of Cylance, Inc. and Kostya Kortchinsky, Microsoft.
Was this reply helpful? (0) (0)