Vulnerability Description
HGFS.sys in the VMware Tools package in VMware Workstation 5.x before 5.5.6 build 80404, VMware Player before 1.0.6 build 80404, VMware ACE before 1.0.5 build 79846, VMware Server before 1.0.5 build 80187, and VMware ESX 2.5.4 through 3.0.2 does not properly validate arguments in user-mode METHOD_NEITHER IOCTLs to the \\.\hgfs device, which allows guest OS users to modify arbitrary memory locations in guest kernel memory and gain privileges.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Ace | 1.0.0 |
| Vmware | Esx Server | 2.5.5 |
| Vmware | Player | 1.0.4 |
| Vmware | Server | 1.0.3 |
| Vmware | Vmware Player | 1.0.0 |
| Vmware | Vmware Server | 1.0.0 |
| Vmware | Vmware Workstation | 5.5.0 |
| Vmware | Workstation | 5.5.1 |
| Vmware | Esx | 2.5.4 |
Related Weaknesses (CWE)
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=712
- http://secunia.com/advisories/30556Vendor Advisory
- http://security.gentoo.org/glsa/glsa-201209-25.xml
- http://securityreason.com/securityalert/3922
- http://securitytracker.com/id?1020197
- http://www.securityfocus.com/archive/1/493080/100/0/threaded
- http://www.securityfocus.com/archive/1/493148/100/0/threaded
- http://www.securityfocus.com/archive/1/493172/100/0/threaded
- http://www.vmware.com/security/advisories/VMSA-2008-0009.html
- http://www.vupen.com/english/advisories/2008/1744
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=712
- http://secunia.com/advisories/30556Vendor Advisory
- http://security.gentoo.org/glsa/glsa-201209-25.xml
FAQ
What is CVE-2007-5671?
CVE-2007-5671 is a vulnerability with a CVSS score of 4.4 (MEDIUM). HGFS.sys in the VMware Tools package in VMware Workstation 5.x before 5.5.6 build 80404, VMware Player before 1.0.6 build 80404, VMware ACE before 1.0.5 build 79846, VMware Server before 1.0.5 build 8...
How severe is CVE-2007-5671?
CVE-2007-5671 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5671?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Ace, Vmware Esx Server, Vmware Player, Vmware Server, Vmware Vmware Player.