Vulnerability Description
Directory traversal vulnerability in the Shared Folders feature for VMWare ACE 1.0.2 and 2.0.2, Player 1.0.4 and 2.0.2, and Workstation 5.5.4 and 6.0.2 allows guest OS users to read and write arbitrary files on the host OS via a multibyte string that produces a wide character string containing .. (dot dot) sequences, which bypasses the protection mechanism, as demonstrated using a "%c0%2e%c0%2e" string.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Ace | 1.0 |
| Vmware | Player | 1.0.4 |
| Vmware | Vmware Player | 1.0.1_build_19317 |
| Vmware | Vmware Workstation | 6.0.1 |
| Vmware | Workstation | 4.5.2 |
Related Weaknesses (CWE)
References
- http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=display
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060457.html
- http://lists.vmware.com/pipermail/security-announce/2008/000008.html
- http://secunia.com/advisories/29117
- http://securityreason.com/securityalert/3700
- http://www.coresecurity.com/?action=item&id=2129
- http://www.securityfocus.com/archive/1/488725/100/0/threaded
- http://www.securityfocus.com/archive/1/489739/100/0/threaded
- http://www.securityfocus.com/bid/27944
- http://www.securityfocus.com/bid/28276
- http://www.securitytracker.com/id?1019493
- http://www.vmware.com/security/advisories/VMSA-2008-0005.html
- http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html
- http://www.vmware.com/support/player/doc/releasenotes_player.html
- http://www.vmware.com/support/player2/doc/releasenotes_player2.html
FAQ
What is CVE-2008-0923?
CVE-2008-0923 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Directory traversal vulnerability in the Shared Folders feature for VMWare ACE 1.0.2 and 2.0.2, Player 1.0.4 and 2.0.2, and Workstation 5.5.4 and 6.0.2 allows guest OS users to read and write arbitrar...
How severe is CVE-2008-0923?
CVE-2008-0923 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0923?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Ace, Vmware Player, Vmware Vmware Player, Vmware Vmware Workstation, Vmware Workstation.