CVE-2007-5671: Input Validation
First published: Thu Jun 05 2008(Updated: )
HGFS.sys in the VMware Tools package in VMware Workstation 5.x before 5.5.6 build 80404, VMware Player before 1.0.6 build 80404, VMware ACE before 1.0.5 build 79846, VMware Server before 1.0.5 build 80187, and VMware ESX 2.5.4 through 3.0.2 does not properly validate arguments in user-mode METHOD_NEITHER IOCTLs to the \\.\hgfs device, which allows guest OS users to modify arbitrary memory locations in guest kernel memory and gain privileges.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Player | =1.0.3 | |
| VMware ACE | =1.0.1 | |
| VMware Server | =1.0.1 | |
| VMware Player | =1.0.2 | |
| VMware Player | =1.0.5 | |
| VMware ACE | =1.0.2 | |
| VMware Player | =1.0.0 | |
| VMware ACE | =1.0.0 | |
| VMware Workstation | =5.5.5 | |
| VMware Workstation and ESXi | =5.5.3 | |
| VMware Workstation | =5.5.0 | |
| VMware Server | =1.0.4 | |
| VMware Player | =1.0.4 | |
| VMware ESXi | =2.5.5 | |
| VMware Server | =1.0.0 | |
| VMware ACE | =1.0.4 | |
| VMware Workstation | =5.5.2 | |
| VMware Player | =1.0.1 | |
| VMware ACE | =1.0.3 | |
| VMware Workstation and ESXi | =5.5.1 | |
| VMware Server | =1.0.3 | |
| VMware Server | =1.0.2 | |
| VMware Workstation and ESXi | =5.5.4 | |
| VMware ESXi | =2.5.4 | |
| VMware ESXi | =3.0.0 | |
| VMware ESXi | =3.0.2 | |
| VMware ESXi | =3.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=712
- http://www.vmware.com/security/advisories/VMSA-2008-0009.html
- http://securitytracker.com/id?1020197
- http://secunia.com/advisories/30556
- http://securityreason.com/securityalert/3922
- http://www.vupen.com/english/advisories/2008/1744
- http://security.gentoo.org/glsa/glsa-201209-25.xml
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5688
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5358
- http://www.securityfocus.com/archive/1/493172/100/0/threaded
- http://www.securityfocus.com/archive/1/493148/100/0/threaded
- http://www.securityfocus.com/archive/1/493080/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2007-5671?
CVE-2007-5671 has been classified as a moderate severity vulnerability due to potential unauthorized access risks.
How do I fix CVE-2007-5671?
To fix CVE-2007-5671, update to the latest version of VMware Tools and ensure your VMware software is at least VMware Workstation 5.5.6, VMware Player 1.0.6, or VMware Server 1.0.5.
Which VMware products are affected by CVE-2007-5671?
CVE-2007-5671 affects VMware Workstation 5.x versions prior to 5.5.6, VMware Player versions prior to 1.0.6, VMware ACE versions prior to 1.0.5, and VMware Server versions prior to 1.0.5, as well as VMware ESX 2.5.4 through 3.0.2.
What type of vulnerability is CVE-2007-5671?
CVE-2007-5671 is a user-mode vulnerability related to improper argument validation in the HGFS.sys component of VMware.
Is there a workaround for CVE-2007-5671?
The best workaround for CVE-2007-5671 is to disable VMware Tools or avoid using programs that utilize HGFS functionality until the software is updated.
- agent/references
- agent/type
- agent/severity
- agent/author
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/vmware
- canonical/vmware player
- version/vmware player/1.0.3
- canonical/vmware ace
- version/vmware ace/1.0.1
- canonical/vmware server
- version/vmware server/1.0.1
- version/vmware player/1.0.2
- version/vmware player/1.0.5
- version/vmware ace/1.0.2
- version/vmware player/1.0.0
- version/vmware ace/1.0.0
- canonical/vmware workstation
- version/vmware workstation/5.5.5
- canonical/vmware workstation and esxi
- version/vmware workstation and esxi/5.5.3
- version/vmware workstation/5.5.0
- version/vmware server/1.0.4
- version/vmware player/1.0.4
- canonical/vmware esxi
- version/vmware esxi/2.5.5
- version/vmware server/1.0.0
- version/vmware ace/1.0.4
- version/vmware workstation/5.5.2
- version/vmware player/1.0.1
- version/vmware ace/1.0.3
- version/vmware workstation and esxi/5.5.1
- version/vmware server/1.0.3
- version/vmware server/1.0.2
- version/vmware workstation and esxi/5.5.4
- version/vmware esxi/2.5.4
- version/vmware esxi/3.0.0
- version/vmware esxi/3.0.2
- version/vmware esxi/3.0.1