CVE-2013-1406: Input Validation
First published: Mon Feb 11 2013(Updated: )
The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before 5.0.2, VMware View 4.x before 4.6.2 and 5.x before 5.1.2 on Windows, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 does not properly restrict memory allocation by control code, which allows local users to gain privileges via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Workstation | =8.0 | |
| VMware Workstation | =8.0.0.18997 | |
| VMware Workstation | =8.0.1 | |
| VMware Workstation | =8.0.1.27038 | |
| VMware Workstation | =8.0.2 | |
| VMware Workstation | =8.0.3 | |
| VMware Workstation | =8.0.4 | |
| VMware Workstation | =9.0 | |
| Microsoft Windows | ||
| VMware Fusion | =4.1 | |
| VMware Fusion | =4.1.1 | |
| VMware Fusion | =4.1.2 | |
| VMware Fusion | =4.1.3 | |
| VMware Fusion | =5.0 | |
| VMware Fusion | =5.0.1 | |
| VMware View | =4.0.0 | |
| VMware View | =4.0.0-u2 | |
| VMware View | =4.5 | |
| VMware View | =4.6.0 | |
| VMware View | =4.6.1 | |
| VMware View | =5.0 | |
| VMware View | =5.0.0 | |
| VMware View | =5.0.0-u2 | |
| VMware View | =5.0.1 | |
| VMware View | =5.1.0 | |
| VMware View | =5.1.1 | |
| VMware ESXi | =4.0 | |
| VMware ESXi | =4.0-1 | |
| VMware ESXi | =4.0-2 | |
| VMware ESXi | =4.0-3 | |
| VMware ESXi | =4.0-4 | |
| VMware ESXi | =4.1 | |
| VMware ESXi | =4.1-1 | |
| VMware ESXi | =4.1-2 | |
| VMware ESXi | =5.0 | |
| VMware ESXi | =5.0-1 | |
| VMware ESXi | =5.0-2 | |
| VMware ESXi | =5.1 | |
| VMware ESX | =4.0 | |
| VMware ESX | =4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/vmware
- canonical/vmware workstation
- version/vmware workstation/8.0
- version/vmware workstation/8.0.0.18997
- version/vmware workstation/8.0.1
- version/vmware workstation/8.0.1.27038
- version/vmware workstation/8.0.2
- version/vmware workstation/8.0.3
- version/vmware workstation/8.0.4
- version/vmware workstation/9.0
- vendor/microsoft
- canonical/microsoft windows
- canonical/vmware fusion
- version/vmware fusion/4.1
- version/vmware fusion/4.1.1
- version/vmware fusion/4.1.2
- version/vmware fusion/4.1.3
- version/vmware fusion/5.0
- version/vmware fusion/5.0.1
- canonical/vmware view
- version/vmware view/4.0.0
- version/vmware view/4.0.0-u2
- version/vmware view/4.5
- version/vmware view/4.6.0
- version/vmware view/4.6.1
- version/vmware view/5.0
- version/vmware view/5.0.0
- version/vmware view/5.0.0-u2
- version/vmware view/5.0.1
- version/vmware view/5.1.0
- version/vmware view/5.1.1
- canonical/vmware esxi
- version/vmware esxi/4.0
- version/vmware esxi/4.0-1
- version/vmware esxi/4.0-2
- version/vmware esxi/4.0-3
- version/vmware esxi/4.0-4
- version/vmware esxi/4.1
- version/vmware esxi/4.1-1
- version/vmware esxi/4.1-2
- version/vmware esxi/5.0
- version/vmware esxi/5.0-1
- version/vmware esxi/5.0-2
- version/vmware esxi/5.1
- canonical/vmware esx
- version/vmware esx/4.0
- version/vmware esx/4.1