First published: Mon Apr 12 2010(Updated: )
VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203138; VMware Fusion 2.x before 2.0.6 build 246742; VMware ESXi 3.5 and 4.0; and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0 does not properly access libraries, which allows user-assisted remote attackers to execute arbitrary code by tricking a Windows guest OS user into clicking on a file that is stored on a network share.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
VMware Workstation | =6.5.0 | |
VMware Workstation | =6.5.1 | |
VMware Workstation | =6.5.2 | |
VMware Workstation | =6.5.3 | |
Microsoft Windows | ||
VMware Player | =2.5 | |
VMware Player | =2.5.1 | |
VMware Player | =2.5.2 | |
VMware Player | =2.5.3 | |
VMware ACE | =2.5.0 | |
VMware ACE | =2.5.1 | |
VMware ACE | =2.5.2 | |
VMware ACE | =2.5.3 | |
VMware Server | =2.0.0 | |
VMware Server | =2.0.1 | |
VMware Server | =2.0.2 | |
VMware Fusion Pro | =2.0 | |
VMware Fusion Pro | =2.0.1 | |
VMware Fusion Pro | =2.0.2 | |
VMware Fusion Pro | =2.0.3 | |
VMware Fusion Pro | =2.0.4 | |
VMware Fusion Pro | =2.0.5 | |
VMware Fusion Pro | =3.0 | |
VMware ESXi | =3.5 | |
VMware ESXi | =4.0 | |
VMware ESX | =2.5.5 | |
VMware ESX | =3.0.3 | |
VMware ESX | =3.5 | |
VMware ESX | =4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2010-1141 is considered to be a moderate severity vulnerability.
To fix CVE-2010-1141, you should update to the latest version of VMware Tools or the affected VMware products.
CVE-2010-1141 affects VMware Workstation versions 6.5.x, VMware Player 2.5.x, VMware ACE 2.5.x, VMware Server 2.x, VMware Fusion 2.x, and VMware ESXi versions 3.5 and 4.0.
CVE-2010-1141 is a vulnerability related to privilege escalation in VMware software.
CVE-2010-1141 was disclosed in April 2010.