NVD

Id
15560  
Name
CVE-2010-4297  
Description
The VMware Tools update functionality in VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548; VMware Player 2.5.x before 2.5.5 build 328052 and 3.1.x before 3.1.2 build 301548; VMware Server 2.0.2; VMware Fusion 2.x before 2.0.8 build 328035 and 3.1.x before 3.1.2 build 332101; VMware ESXi 3.5, 4.0, and 4.1; and VMware ESX 3.0.3, 3.5, 4.0, and 4.1 allows host OS users to gain privileges on the guest OS via unspecified vectors, related to a "command injection" issue.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-12-06  
Modified Date
2010-12-14  
Seq
2010-4297  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
88059 15560 CVE-2010-4297 [security-announce] 20101202 VMSA-2010-0018 VMware hosted products and ESX patches resolve multiple security issues  View
88060 15560 CVE-2010-4297 20101203 VMSA-2010-0018 VMware hosted products and ESX patches resolve multiple security issues  View
88061 15560 CVE-2010-4297 45166  View
88062 15560 CVE-2010-4297 1024819  View
88063 15560 CVE-2010-4297 1024820  View
88064 15560 CVE-2010-4297 http://www.vmware.com/security/advisories/VMSA-2010-0018.html  View
88065 15560 CVE-2010-4297 ADV-2010-3116  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36783 JVNDB-2010-002563 複数の VMware 製品の VMware-Tools アップデート機能における権限昇格の脆弱性 複数の VMware 製品の VMware-Tools アップデート機能には、ゲスト OS 上の権限を取得される脆弱性が存在します。 CVE-2010-4297 46877 CVE-2010-4297 15560 7.2 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002563.html 2010-12-02 2010-12-27 View