QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1141

Published: Apr 12, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203138; VMware Fusion 2.x before 2.0.6 build 246742; VMware ESXi 3.5 and 4.0; and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0 does not properly access libraries, which allows user-assisted remote attackers to execute arbitrary code by tricking a Windows guest OS user into clicking on a file that is stored on a network share.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_SECUNIA

[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

mailing-list

x_refsource_MLIST

20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_SECTRACK

oval:org.mitre.oval:def:7020

vdb-entry

signature

x_refsource_OVAL

http://www.vmware.com/security/advisories/VMSA-2010-0007.html

x_refsource_CONFIRM

20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.