CVE-2011-1126

Current Description

VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory.

Basic Data

PublishedApril 04, 2011
Last ModifiedOctober 09, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-264
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score6.9
SeverityMEDIUM
Exploitability Score3.4
Impact Score10.0
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationVmwareVix Api1.0*******
      2.3ApplicationVmwareVix Api1.1*******
      2.3ApplicationVmwareVix Api1.1.1*******
      2.3ApplicationVmwareVix Api1.1.2*******
      2.3ApplicationVmwareVix Api1.1.3*******
      2.3ApplicationVmwareVix Api1.1.4*******
      2.3ApplicationVmwareVix Api1.1.5*******
      2.3ApplicationVmwareVix Api1.6.0*******
      2.3ApplicationVmwareVix Api1.6.1*******
      2.3ApplicationVmwareVix Api1.7*******
      2.3ApplicationVmwareVix Api1.8*******
      2.3ApplicationVmwareVix Api1.8.1*******
      2.3ApplicationVmwareVix Api1.9*******
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSLinuxLinux Kernel********
  • AND
    • OR - Configuration 2
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationVmwareWorkstation6.5.0*******
      2.3ApplicationVmwareWorkstation6.5.1*******
      2.3ApplicationVmwareWorkstation6.5.2*******
      2.3ApplicationVmwareWorkstation6.5.3*******
      2.3ApplicationVmwareWorkstation6.5.4*******
      2.3ApplicationVmwareWorkstation6.5.5*******
      2.3ApplicationVmwareWorkstation7.0*******
      2.3ApplicationVmwareWorkstation7.0.1*******
      2.3ApplicationVmwareWorkstation7.1*******
      2.3ApplicationVmwareWorkstation7.1.1*******
      2.3ApplicationVmwareWorkstation7.1.2*******
      2.3ApplicationVmwareWorkstation7.1.3*******
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSLinuxLinux Kernel********

Vulnerable Software List

VendorProductVersions
Vmware Workstation 6.5.0, 6.5.1, 6.5.2, 6.5.3, 6.5.4, 6.5.5, 7.0, 7.0.1, 7.1, 7.1.1, 7.1.2, 7.1.3
Vmware Vix Api 1.0, 1.1, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.5, 1.6.0, 1.6.1, 1.7, 1.8, 1.8.1, 1.9

References

NameSourceURLTags
[security-announce] 20110330 UPDATED VMSA-2011-0006.1 VMware vmrun utility local privilege escalationhttp://lists.vmware.com/pipermail/security-announce/2011/000131.htmlMLISTVendor Advisory
43885http://secunia.com/advisories/43885SECUNIAVendor Advisory
43943http://secunia.com/advisories/43943SECUNIAVendor Advisory
8173http://securityreason.com/securityalert/8173SREASON
1025270http://securitytracker.com/id?1025270SECTRACK
20110330 VMSA-2011-0006 VMware vmrun utility local privilege escalationhttp://www.securityfocus.com/archive/1/517240/100/0/threadedBUGTRAQ
47094http://www.securityfocus.com/bid/47094BID
http://www.vmware.com/security/advisories/VMSA-2011-0006.htmlhttp://www.vmware.com/security/advisories/VMSA-2011-0006.htmlCONFIRMVendor Advisory
ADV-2011-0816http://www.vupen.com/english/advisories/2011/0816VUPENVendor Advisory
vmware-vmrun-privilege-escalation(66472)https://exchange.xforce.ibmcloud.com/vulnerabilities/66472XF