Back to search
CVE-2012-1515
Published: Apr 2, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in a read-only memory block associated with the Virtual DOS Machine.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TA12-164A
third-party-advisory
x_refsource_CERT
MS12-042
vendor-advisory
x_refsource_MS
52820
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:17110
vdb-entry
signature
x_refsource_OVAL
http://www.vmware.com/security/advisories/VMSA-2012-0006.html
x_refsource_CONFIRM
oval:org.mitre.oval:def:15209
vdb-entry
signature
x_refsource_OVAL
1026875
vdb-entry
x_refsource_SECTRACK
vmware-esxserver-io-privilege-escalation(74480)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now