NVD

Id
934  
Name
CVE-2008-0967  
Description
Untrusted search path vulnerability in vmware-authd in VMware Workstation 5.x before 5.5.7 build 91707 and 6.x before 6.0.4 build 93057, VMware Player 1.x before 1.0.7 build 91707 and 2.x before 2.0.4 build 93057, and VMware Server before 1.0.6 build 91891 on Linux, and VMware ESXi 3.5 and VMware ESX 2.5.4 through 3.5, allows local users to gain privileges via a library path option in a configuration file.  
Reject
 
CVSS Version
2  
CVSS Score
6.9  
Severity
Medium  
CVSS Base Score
6.9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.4  
CVSS Vector
(AV:L/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-06-05  
Modified Date
2013-05-14  
Seq
2008-0967  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
5661 934 CVE-2008-0967 20080604 VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability  View
5662 934 CVE-2008-0967 oval:org.mitre.oval:def:4768  View
5663 934 CVE-2008-0967 oval:org.mitre.oval:def:5583  View
5664 934 CVE-2008-0967 GLSA-201209-25  View
5665 934 CVE-2008-0967 3922  View
5666 934 CVE-2008-0967 1020198  View
5667 934 CVE-2008-0967 20080604 VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues  View
5668 934 CVE-2008-0967 29557  View
5669 934 CVE-2008-0967 http://www.vmware.com/security/advisories/VMSA-2008-0009.html  View
5670 934 CVE-2008-0967 ADV-2008-1744  View
5671 934 CVE-2008-0967 vmware-vmwareauthd-privilege-escalation(42878)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
47146 JVNDB-2008-002456 複数の VMware 製品の vmware-authd における権限を取得される脆弱性 複数の VMware 製品の vmware-authd には、権限を取得される脆弱性が存在します。 CVE-2008-0967 31080 CVE-2008-0967 934 6.9 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002456.html 2008-06-04 2010-09-13 View