CVE-2011-1787

{"id": "CVE-2011-1787", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-06-06T19:55:01.987", "references": [{"url": "http://secunia.com/advisories/44840", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/44904", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/48098", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1025601", "source": "cve@mitre.org"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2011-0009.html", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://hermes.opensuse.org/messages/8711677", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "Race condition in mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to gain privileges on the guest OS by mounting a filesystem on top of an arbitrary directory."}, {"lang": "es", "value": "Una Condici\u00f3n de carrera en mount.vmhgfs en VMware Host Guest File System (HGFS) en VMware Workstation versiones 7.1.x anteriores a 7.1.4, VMware Player versiones 3.1.x anteriores a 3.1.4, VMware Fusion versiones 3.1.x anteriores a 3.1.3, VMware ESXi versiones 3.5 hasta 4.1, y VMware ESX versiones 3.0.3 hasta 4.1, permite a los usuarios del Sistema Operativo invitado alcanzar privilegios en el Sistema Operativo Invitado al montar un sistema de archivos sobre un directorio arbitrario."}], "lastModified": "2014-11-14T03:00:31.280", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "13A31E93-7671-492E-A78F-89CF4703B04D"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99ADA116-A571-4788-8DF2-09E8A2AF92F4"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2818FD22-8BC5-4803-8D62-D7C7C22556F9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:player:3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C158CD97-41BA-4422-9A55-B1A8650A0900"}, {"criteria": "cpe:2.3:a:vmware:player:3.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "477D5F22-7DDD-461D-9CD1-2B2A968F6CB7"}, {"criteria": "cpe:2.3:a:vmware:player:3.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C174C452-7249-4B26-9F26-DFE9B3476874"}, {"criteria": "cpe:2.3:a:vmware:player:3.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DAA72ED8-3229-4220-BE75-712CA6E21062"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:fusion:3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "051D820C-E5F4-4DA2-8914-5A33FCFF2D1B"}, {"criteria": "cpe:2.3:a:vmware:fusion:3.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69FFA61C-2258-4006-AECA-D324F5700990"}, {"criteria": "cpe:2.3:a:vmware:fusion:3.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50D2840A-5AF2-4AC4-9243-07CE93E9E9B1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:esx:3.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B6F7416-E694-4EC9-9FE5-0C24448ECB34"}, {"criteria": "cpe:2.3:a:vmware:esx:3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE5ECA1B-7415-4390-8018-670F2C3CDF35"}, {"criteria": "cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "889DE9BE-886F-4BEF-A794-5B5DE73D2322"}, {"criteria": "cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D3C6FC4-DAE3-42DB-B845-593BBD2A50BF"}, {"criteria": "cpe:2.3:a:vmware:esxi:3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD59C463-F352-4F6C-853F-415E3FB4ABDD"}, {"criteria": "cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BDAA7C8-8F2F-4037-A517-2C1EDB70B203"}, {"criteria": "cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73C9E205-87EE-4CE2-A252-DED7BB6D4EAE"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}