Vulnerability Name: CVE-2008-0967 (CCN-42878) Assigned: 2008-06-04 Published: 2008-06-04 Updated: 2018-10-30 Summary: Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware ESX 2.5.4 through 3.5, allows local users to gain privileges via a library path option in a configuration file. CVSS v3 Severity: 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Exploitability Metrics: Attack Vector (AV): LocalAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): LowIntegrity (I): LowAvailibility (A): Low
CVSS v2 Severity: 6.9 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C 5.1 Medium (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C Exploitability Metrics: Access Vector (AV): LocalAccess Complexity (AC): MediumAuthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
4.4 Medium (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P 3.2 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C Exploitability Metrics: Access Vector (AV): LocalAccess Complexity (AC): MediumAthentication (Au): NoneImpact Metrics: Confidentiality (C): PartialIntegrity (I): PartialAvailibility (A): Partial
Vulnerability Type: CWE-Other Vulnerability Consequences: Gain Privileges References: Source: MITRECVE-2008-0967 20080604 VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability VMware Products Multiple Vulnerabilities 30556 GLSA-201209-25 3922 VMware Unsafe Library Path in vmware-authd Lets Local Users Gain Elevated Privileges 1020198 VMware Multiple Products vmware-authd Search Path Subversion Local Privilege Escalation 20080604 VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues 29557 VMware vmware-authd Daemon Local Privilege Escalation Vulnerability Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues http://www.vmware.com/security/advisories/VMSA-2008-0009.html ADV-2008-1744 vmware-vmwareauthd-privilege-escalation(42878) vmware-vmwareauthd-privilege-escalation(42878) oval:org.mitre.oval:def:4768 oval:org.mitre.oval:def:5583 Vulnerable Configuration: Configuration 1 :cpe:/a:vmware:esx_server:2.5.5:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.1:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.2:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.3:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.5:*:*:*:*:*:*:* OR cpe:/a:vmware:esxi:3.5:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.0:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.4:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.5:*:*:*:*:*:*:* OR cpe:/a:vmware:player:1.0.6:*:*:*:*:*:*:* OR cpe:/a:vmware:player:2.0:*:*:*:*:*:*:* OR cpe:/a:vmware:player:2.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:player:2.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:player:2.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_server:1.0.0:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_server:1.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_server:1.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_server:1.0.4:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_server:1.0.5:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:5.5.0:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:5.5.2:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:5.5.5:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:5.5.6:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:6.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:6.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:vmware_workstation:6.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.1:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.3:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.4:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:6.0:*:*:*:*:*:*:* OR cpe:/o:vmware:esx:3.0.0:*:*:*:*:*:*:* OR cpe:/o:vmware:esx:3.0.1:*:*:*:*:*:*:* OR cpe:/o:vmware:esx:3.0.2:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:vmware:workstation:5.5.1:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:6.0:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:2.5.5:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.3:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.4:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.5:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.1:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.2:*:*:*:*:*:*:* OR cpe:/a:vmware:esx_server:3.3:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.0:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.2:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.5:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.5.6:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:6.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:6.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:6.0.3:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.1:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.2:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.4:*:*:*:*:*:*:* OR cpe:/a:vmware:server:1.0.5:*:*:*:*:*:*:* Oval Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:4768 V VMware Unsafe Library Path in vmware-authd Lets Local Users Gain Elevated Privileges 2010-08-16 oval:org.mitre.oval:def:5583 V VMware Unsafe Library Path in vmware-authd Lets Local Users Gain Elevated Privileges 2010-05-17
BACK
vmware esx server 2.5.5
vmware esx server 3.1
vmware esx server 3.2
vmware esx server 3.3
vmware esx server 3.5
vmware esxi 3.5
vmware player 1.0.0
vmware player 1.0.1
vmware player 1.0.2
vmware player 1.0.3
vmware player 1.0.4
vmware player 1.0.5
vmware player 1.0.6
vmware player 2.0
vmware player 2.0.1
vmware player 2.0.2
vmware player 2.0.3
vmware server 1.0.3
vmware vmware server 1.0.0
vmware vmware server 1.0.1
vmware vmware server 1.0.2
vmware vmware server 1.0.4
vmware vmware server 1.0.5
vmware vmware workstation 5.5.0
vmware vmware workstation 5.5.2
vmware vmware workstation 5.5.5
vmware vmware workstation 5.5.6
vmware vmware workstation 6.0.1
vmware vmware workstation 6.0.2
vmware vmware workstation 6.0.3
vmware workstation 5.5.1
vmware workstation 5.5.3
vmware workstation 5.5.4
vmware workstation 6.0
vmware esx 3.0.0
vmware esx 3.0.1
vmware esx 3.0.2
vmware workstation 5.5.1
vmware workstation 6.0
vmware esx server 2.5.5
vmware server 1.0.3
vmware workstation 5.5.3
vmware workstation 5.5.4
vmware esx server 3.5
vmware server 1.0
vmware esx server 3.1
vmware esx server 3.2
vmware esx server 3.3
vmware workstation 5.5.0
vmware workstation 5.5.2
vmware workstation 5.5.5
vmware workstation 5.5.6
vmware workstation 6.0.1
vmware workstation 6.0.2
vmware workstation 6.0.3
vmware server 1.0.1
vmware server 1.0.2
vmware server 1.0.4
vmware server 1.0.5
Denotes that component is vulnerable