QwikSec

Security Database

CVE

CWE

Training

CVE-2008-0967

Published: Jun 5, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware ESX 2.5.4 through 3.5, allows local users to gain privileges via a library path option in a configuration file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_GENTOO

vdb-entry

x_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2008-0009.html

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

oval:org.mitre.oval:def:4768

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

20080604 VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

vmware-vmwareauthd-privilege-escalation(42878)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:5583

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SREASON

20080604 VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability

third-party-advisory

x_refsource_IDEFENSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2008-0967 - Security Vulnerability | QwikSec