CVE-2011-1126

VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://lists.vmware.com/pipermail/security-announce/2011/000131.html	Vendor Advisory
http://secunia.com/advisories/43885	Vendor Advisory
http://secunia.com/advisories/43943	Vendor Advisory
http://securityreason.com/securityalert/8173
http://securitytracker.com/id?1025270
http://www.securityfocus.com/archive/1/517240/100/0/threaded
http://www.securityfocus.com/bid/47094
http://www.vmware.com/security/advisories/VMSA-2011-0006.html	Vendor Advisory
http://www.vupen.com/english/advisories/2011/0816	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66472
http://lists.vmware.com/pipermail/security-announce/2011/000131.html	Vendor Advisory
http://secunia.com/advisories/43885	Vendor Advisory
http://secunia.com/advisories/43943	Vendor Advisory
http://securityreason.com/securityalert/8173
http://securitytracker.com/id?1025270
http://www.securityfocus.com/archive/1/517240/100/0/threaded
http://www.securityfocus.com/bid/47094
http://www.vmware.com/security/advisories/VMSA-2011-0006.html	Vendor Advisory
http://www.vupen.com/english/advisories/2011/0816	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66472

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:vmware:vix_api:1.0:::::::*
	cpe:2.3:a:vmware:vix_api:1.1:::::::*
	cpe:2.3:a:vmware:vix_api:1.1.1:::::::*
	cpe:2.3:a:vmware:vix_api:1.1.2:::::::*
	cpe:2.3:a:vmware:vix_api:1.1.3:::::::*
	cpe:2.3:a:vmware:vix_api:1.1.4:::::::*
	cpe:2.3:a:vmware:vix_api:1.1.5:::::::*
	cpe:2.3:a:vmware:vix_api:1.6.0:::::::*
	cpe:2.3:a:vmware:vix_api:1.6.1:::::::*
	cpe:2.3:a:vmware:vix_api:1.7:::::::*
	cpe:2.3:a:vmware:vix_api:1.8:::::::*
	cpe:2.3:a:vmware:vix_api:1.8.1:::::::*
	cpe:2.3:a:vmware:vix_api:1.9:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

OR	cpe:2.3:a:vmware:workstation:6.5.0:::::::*
	cpe:2.3:a:vmware:workstation:6.5.1:::::::*
	cpe:2.3:a:vmware:workstation:6.5.2:::::::*
	cpe:2.3:a:vmware:workstation:6.5.3:::::::*
	cpe:2.3:a:vmware:workstation:6.5.4:::::::*
	cpe:2.3:a:vmware:workstation:6.5.5:::::::*
	cpe:2.3:a:vmware:workstation:7.0:::::::*
	cpe:2.3:a:vmware:workstation:7.0.1:::::::*
	cpe:2.3:a:vmware:workstation:7.1:::::::*
	cpe:2.3:a:vmware:workstation:7.1.1:::::::*
	cpe:2.3:a:vmware:workstation:7.1.2:::::::*
	cpe:2.3:a:vmware:workstation:7.1.3:::::::*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:25

Type	Values Removed	Values Added
References	~~() http://lists.vmware.com/pipermail/security-announce/2011/000131.html - Vendor Advisory~~	() http://lists.vmware.com/pipermail/security-announce/2011/000131.html - Vendor Advisory
References	~~() http://secunia.com/advisories/43885 - Vendor Advisory~~	() http://secunia.com/advisories/43885 - Vendor Advisory
References	~~() http://secunia.com/advisories/43943 - Vendor Advisory~~	() http://secunia.com/advisories/43943 - Vendor Advisory
References	~~() http://securityreason.com/securityalert/8173 -~~	() http://securityreason.com/securityalert/8173 -
References	~~() http://securitytracker.com/id?1025270 -~~	() http://securitytracker.com/id?1025270 -
References	~~() http://www.securityfocus.com/archive/1/517240/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/517240/100/0/threaded -
References	~~() http://www.securityfocus.com/bid/47094 -~~	() http://www.securityfocus.com/bid/47094 -
References	~~() http://www.vmware.com/security/advisories/VMSA-2011-0006.html - Vendor Advisory~~	() http://www.vmware.com/security/advisories/VMSA-2011-0006.html - Vendor Advisory
References	~~() http://www.vupen.com/english/advisories/2011/0816 - Vendor Advisory~~	() http://www.vupen.com/english/advisories/2011/0816 - Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/66472 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/66472 -

Information

Published : 2011-04-04 12:27

Updated : 2025-04-11 00:51

NVD link : CVE-2011-1126

Mitre link : CVE-2011-1126

CVE.ORG link : CVE-2011-1126

JSON object : View

Products Affected

vmware

workstation
vix_api

linux

linux_kernel

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2011-1126", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2011-04-04T12:27:38.157", "references": [{"url": "http://lists.vmware.com/pipermail/security-announce/2011/000131.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/43885", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/43943", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/8173", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1025270", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/517240/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/47094", "source": "cve@mitre.org"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2011-0006.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2011/0816", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66472", "source": "cve@mitre.org"}, {"url": "http://lists.vmware.com/pipermail/security-announce/2011/000131.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/43885", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/43943", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securityreason.com/securityalert/8173", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1025270", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/517240/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/47094", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2011-0006.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2011/0816", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66472", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory."}, {"lang": "es", "value": "VMware vmrun,como se utiliza en VIX API v1.x antes de v1.10.3 y VMware Workstation v6.5.x antes de v7.1.4 y v7.x compilaci\u00f3n 385536 en Linux podr\u00eda permitir a usuarios locales conseguir privilegios a trav\u00e9s de un caballo de Troya en una librer\u00eda compartida en un directorio especificado."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:vix_api:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED1A8908-15AE-43AF-A1F1-D17A00BB8BDE"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD28C4F9-2B04-45AA-9A23-313892FBCCEC"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3F56B36-D0AA-4642-A35F-F2AD8A9AC82E"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F80DE31-5B5D-41EF-9DC1-915AC88513A8"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "093CF496-09F2-4E2A-8B41-DD4B817704AE"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27E7EC42-023C-4536-B2DC-EC704337D73C"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DF7EE8C-AD9D-40D6-99A0-26758DB83EED"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9FDEEE1-BC47-4EE6-A56B-C7626D554019"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98918409-9F58-4FBC-B5C1-4015B5E3C0FE"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF0C3C01-6469-4985-A11F-EEF0BA71D6A0"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A06E17F-01B8-470C-B86C-A1BAB01E9C6E"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E10DEC6-2798-4960-8946-3A1682CC2990"}, {"criteria": "cpe:2.3:a:vmware:vix_api:1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D78D8B5-400A-494E-A181-4ADBA8EB4246"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vmware:workstation:6.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E8F3BFF-676B-4E2C-98BA-DCA71E49060F"}, {"criteria": "cpe:2.3:a:vmware:workstation:6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3E658DA-56E8-49F0-B486-4EF622B63627"}, {"criteria": "cpe:2.3:a:vmware:workstation:6.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "541D77A2-99C5-4CDB-877F-7E83E1E3369E"}, {"criteria": "cpe:2.3:a:vmware:workstation:6.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6B53C0A-5A0C-4168-8AD3-F3E957AE8919"}, {"criteria": "cpe:2.3:a:vmware:workstation:6.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3684F0D0-B8BE-442B-AA27-0A485E6BFFAF"}, {"criteria": "cpe:2.3:a:vmware:workstation:6.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A172221-19AB-4F7D-AA28-94AD5A6EFBF1"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB33DBC9-3B63-457E-A353-B9E7378211AE"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34F436D4-B7B7-43CB-A2BD-C5E791F7E3C3"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF53DB66-4C79-47BB-AABD-6DCE2EF98E1E"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "13A31E93-7671-492E-A78F-89CF4703B04D"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99ADA116-A571-4788-8DF2-09E8A2AF92F4"}, {"criteria": "cpe:2.3:a:vmware:workstation:7.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2818FD22-8BC5-4803-8D62-D7C7C22556F9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}

6.9 /10