Vulnerability Description
Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows Xp | All versions |
| Vmware | Workstation | <= 5.5.3 |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521
- http://secunia.com/advisories/25079
- http://www.securityfocus.com/archive/1/467936/30/6690/threaded
- http://www.securityfocus.com/archive/1/469011/30/6510/threaded
- http://www.securityfocus.com/bid/23721
- http://www.securitytracker.com/id?1017980
- http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554Patch
- http://www.vupen.com/english/advisories/2007/1592
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521
- http://secunia.com/advisories/25079
- http://www.securityfocus.com/archive/1/467936/30/6690/threaded
- http://www.securityfocus.com/archive/1/469011/30/6510/threaded
- http://www.securityfocus.com/bid/23721
- http://www.securitytracker.com/id?1017980
- http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554Patch
FAQ
What is CVE-2007-1744?
CVE-2007-1744 is a vulnerability with a CVSS score of 6.3 (MEDIUM). Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host s...
How severe is CVE-2007-1744?
CVE-2007-1744 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1744?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows Xp, Vmware Workstation.