ID

VAR-200009-0023


CVE

CVE-2010-1141


TITLE

VMWare Tools Package Library Reference Code Execution Vulnerability

Trust: 1.0

sources: IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-0574

DESCRIPTION

VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203138; VMware Fusion 2.x before 2.0.6 build 246742; VMware ESXi 3.5 and 4.0; and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0 does not properly access libraries, which allows user-assisted remote attackers to execute arbitrary code by tricking a Windows guest OS user into clicking on a file that is stored on a network share. Some applications for Microsoft Windows may use unsafe methods for determining how to load DLLs. As a result, these applications can be forced to load a DLL from an attacker-controlled source rather than a trusted location. Windows Program DLL There is an attackable vulnerability in reading. Dynamic link Library (DLL) Is a software component that is loaded at run time, not at program compile time. The program is LoadLibrary() And LoadLibraryEx() Using DLL Is read. Read DLL If no path is specified, specific directories are searched in order and found first. DLL Is loaded. Since this directory group includes the current directory of the process, the directory that can be operated by the attacker is set as the current directory. LoadLibrary() If is called, attack code may be executed. This issue can occur when browsing files located in directories that an attacker can manipulate. Read DLL The name depends on the program. DLL Read Windows The entire program may be affected. " Opera Software "and" Adobe Vulnerability information on " : Mitsui Bussan Secure Direction Co., Ltd. Takashi Yoshikawa MrA remote attacker could execute arbitrary code with the authority to execute the program. Attacker crafted DLL The USB Placing it on a drive or network drive may cause an attack. VMWare is a virtual PC software that allows two or more Windows, DOS, and LINUX systems to run simultaneously on a single machine. The VMWare Tools package used in VMWare products does not properly access the function library. When a program executes under Microsoft Windows, it may require additional code stored in DLL library files. A weakness exists in the algorithm used to locate these files. The search algorithm used to locate DLL files specifies that the current working directory is checked before the System folders. If a trojaned DLL can be inserted into the system in an arbitrary location, and a predictable executable called with the same current working directory, the trojaned DLL may be loaded and executed. This may occur when a data file is accessed through the 'Run' function, or double clicked in Windows Explorer. This has been reported to occur with the 'riched20.dll' and 'msi.dll' DLL files and some Microsoft Office applications, including WordPad. This behavior has also been reported for files loaded from UNC shares, or directly from FTP servers. An attacker can exploit this issue by enticing a user to open a malicious file from a network share. The issue can be exploited on Windows guest operating systems Successful exploits will allow attackers to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. This issue affects the following products: Workstation Player ACE Server Fusion ESX ESXi NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote and Local Vulnerabilities), but has been given its own record to better document it. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2010-0007 Synopsis: VMware hosted products, vCenter Server and ESX patches resolve multiple security issues Issue date: 2010-04-09 Updated on: 2010-04-09 (initial release of advisory) CVE numbers: CVE-2010-1142 CVE-2010-1140 CVE-2009-2042 CVE-2009-1564 CVE-2009-1565 CVE-2009-3732 CVE-2009-3707 CVE-2010-1138 CVE-2010-1139 CVE-2010-1141 - ------------------------------------------------------------------------- 1. 2. Notes: Effective May 2010, VMware's patch and update release program during Extended Support will be continued with the condition that all subsequent patch and update releases will be based on the latest baseline release version as of May 2010 (i.e. ESX 3.0.3 Update 1, ESX 3.5 Update 5, and VirtualCenter 2.5 Update 6). Refer to section "End of Product Availability FAQs" at http://www.vmware.com/support/policies/lifecycle/vi/faq.html for details. Extended support for ESX 2.5.5 ends on 2010-06-15. Users should plan to upgrade to at least ESX 3.0.3 and preferably to the newest release available. Extended support for ESX 3.0.3 ends on 2011-12-10. Users should plan to upgrade to at least ESX 3.5 and preferably to the newest release available. End of General Support for VMware Workstation 6.x is 2011-04-27, users should plan to upgrade to the newest release available. End of General Support for VMware Server 2.0 is 2011-06-30, users should plan to upgrade to the newest release of either ESXi or VMware Player. Extended support for Virtual Center 2.0.2 is 2011-12-10, users should plan to upgrade to the newest release of vCenter Server. 3. Problem Description a. This file could be in any file format. VMware would like to thank Jure Skofic and Mitja Kolsek of ACROS Security (http://www.acrossecurity.com) for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-1141 to this issue. Steps needed to remediate this vulnerability: Guest systems on VMware Workstation, Player, ACE, Server, Fusion - Install the remediated version of Workstation, Player, ACE, Server and Fusion. - Upgrade tools in the virtual machine (virtual machine users will be prompted to upgrade). Guest systems on ESX 4.0, 3.5, 3.0.3, 2.5.5, ESXi 4.0, 3.5 - Install the relevant patches (see below for patch identifiers) - Manually upgrade tools in the virtual machine (virtual machine users will not be prompted to upgrade). Note the VI Client will not show the VMware tools is out of date in the summary tab. Please see http://tinyurl.com/27mpjo page 80 for details. The following table lists what action remediates the vulnerability (column 4) if a solution is available. See above for remediation details. On most recent versions of Windows (XP, Vista) the attacker would need to have administrator privileges to plant the malicious executable in the right location. Steps needed to remediate this vulnerability: See section 3.a. VMware would like to thank Mitja Kolsek of ACROS Security (http://www.acrossecurity.com) for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-1142 to this issue. Refer to the previous table in section 3.a for what action remediates the vulnerability (column 4) if a solution is available. See above for remediation details. c. Windows-based VMware Workstation and Player host privilege escalation A vulnerability in the USB service allows for a privilege escalation. A local attacker on the host of a Windows-based Operating System where VMware Workstation or VMware Player is installed could plant a malicious executable on the host and elevate their privileges. In order for an attacker to exploit the vulnerability, the attacker would need to be able to plant their malicious executable in a certain location on the host machine. On most recent versions of Windows (XP, Vista) the attacker would need to have administrator privileges to plant the malicious executable in the right location. VMware would like to thank Thierry Zoller for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-1140 to this issue. The following table lists what action remediates the vulnerability (column 4) if a solution is available. VMware Product Running Replace with/ Product Version on Apply Patch ============= ======== ======= ================= VirtualCenter any Windows not affected Workstation 7.0 Windows 7.0.1 build 227600 or later Workstation 7.0 Linux not affected Workstation 6.5.x any not affected Player 3.0 Windows 3.0.1 build 227600 or later Player 3.0 Linux not affected Player 2.5.x any not affected Ace any any not affected Server 2.x any not affected Fusion any Mac OS/X not affected ESXi any ESXi not affected ESX any ESX not affected d. Third party library update for libpng to version 1.2.37 The libpng libraries through 1.2.35 contain an uninitialized- memory-read bug that may have security implications. Specifically, 1-bit (2-color) interlaced images whose widths are not divisible by 8 may result in several uninitialized bits at the end of certain rows in certain interlace passes being returned to the user. An application that failed to mask these out-of-bounds pixels might display or process them, albeit presumably with benign results in most cases. The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-2042 to this issue. The following table lists what action remediates the vulnerability (column 4) if a solution is available. VMware VMnc Codec heap overflow vulnerabilities The VMware movie decoder contains the VMnc media codec that is required to play back movies recorded with VMware Workstation, VMware Player and VMware ACE, in any compatible media player. The movie decoder is installed as part of VMware Workstation, VMware Player and VMware ACE, or can be downloaded as a stand alone package. For an attack to be successful the user must be tricked into visiting a malicious web page or opening a malicious video file on a system that has the vulnerable version of the VMnc codec installed. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2009-1564 and CVE-2009-1565 to these issues. VMware would like to thank iDefense, Sebastien Renaud of VUPEN Vulnerability Research Team (http://www.vupen.com) and Alin Rad Pop of Secunia Research for reporting these issues to us. To remediate the above issues either install the stand alone movie decoder or update your product using the table below. VMware Product Running Replace with/ Product Version on Apply Patch ============= ======== ======= ================= VirtualCenter any Windows not affected Movie Decoder any Windows 6.5.4 Build 246459 or later Workstation 7.x any not affected Workstation 6.5.x Windows 6.5.4 build 246459 or later Workstation 6.5.x Linux not affected Player 3.x any not affected Player 2.5.x Windows 2.5.4 build 246459 or later Player 2.5.x Linux not affected ACE any any not affected Server 2.x Window not being addressed at this time Server 2.x Linux not affected Fusion any Mac OS/X not affected ESXi any ESXi not affected ESX any ESX not affected f. Exploitation of this issue may lead to arbitrary code execution on the system where VMrc is installed. Code execution would be at the privilege level of the user. VMrc is present on a system if the VMrc browser plug-in has been installed. This plug-in is required when using the console feature in WebAccess. Installation of the plug-in follows after visiting the console tab in WebAccess and choosing "Install plug-in". The plug- in can only be installed on Internet Explorer and Firefox. Under the following two conditions your version of VMrc is likely to be affected: - the VMrc plug-in was obtained from vCenter 4.0 or from ESX 4.0 without patch ESX400-200911223-UG and - VMrc is installed on a Windows-based system The following steps allow you to determine if you have an affected version of VMrc installed: - Locate the VMrc executable vmware-vmrc.exe on your Windows-based system - Right click and go to Properties - Go to the tab "Versions" - Click "File Version" in the "Item Name" window - If the "Value" window shows "e.x.p build-158248", the version of VMrc is affected Remediation of this issue on Windows-based systems requires the following steps (Linux-based systems are not affected): - Uninstall affected versions of VMrc from the systems where the VMrc plug-in has been installed (use the Windows Add/Remove Programs interface) - Install vCenter 4.0 Update 1 or install the ESX 4.0 patch ESX400-200911223-UG - Login into vCenter 4.0 Update 1 or ESX 4.0 with patch ESX400-200911223-UG using WebAccess on the system where the VMrc needs to be re-installed - Re-install VMrc by going to the console tab in WebAccess. The Console tab is selectable after selecting a virtual machine. Note: the VMrc plug-in for Firefox on Windows-based operating systems is no longer compatible after the above remediation steps. Users are advised to use the Internet Explorer VMrc plug-in. VMware would like to thank Alexey Sintsov from Digital Security Research Group for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2009-3732 to this issue. g. Windows-based VMware authd remote denial of service A vulnerability in vmware-authd could cause a denial of service condition on Windows-based hosts. The denial of service is limited to a crash of authd. The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2009-3707 to this issue. The following table lists what action remediates the vulnerability (column 4) if a solution is available. Potential information leak via hosted networking stack A vulnerability in the virtual networking stack of VMware hosted products could allow host information disclosure. A guest operating system could send memory from the host vmware-vmx process to the virtual network adapter and potentially to the host's physical Ethernet wire. The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-1138 to this issue. VMware would like to thank Johann MacDonagh for reporting this issue to us. The following table lists what action remediates the vulnerability (column 4) if a solution is available. Linux-based vmrun format string vulnerability A format string vulnerability in vmrun could allow arbitrary code execution. If a vmrun command is issued and processes are listed, code could be executed in the context of the user listing the processes. The Common Vulnerabilities and Exposures Project (cve.mitre.org) has assigned the name CVE-2010-1139 to this issue. VMware would like to thank Thomas Toth-Steiner for reporting this issue to us. The following table lists what action remediates the vulnerability (column 4) if a solution is available. VMware Product Running Replace with/ Product Version on Apply Patch ============= ======== ======= ================= VirtualCenter any Windows not affected VIX API any Windows not affected VIX API 1.6.x Linux upgrade to VIX API 1.7 or later VIX API 1.6.x Linux64 upgrade to VIX API 1.7 or later Workstation 7.x any not affected Workstation 6.5.x Windows not affected Workstation 6.5.x Linux 6.5.4 build 246459 or later Player 3.x any not affected Player 2.5.x Windows not affected Player 2.5.x Linux 2.5.4 build 246459 or later Ace any Windows not affected Server 2.x Windows not affected Server 2.x Linux not being fixed at this time Fusion 3.x Mac OS/X not affected Fusion 2.x Mac OS/X 2.0.7 build 246742 or later ESXi any any not affected ESX any any not affected 4. Solution Please review the patch/release notes for your product and version and verify the md5sum and/or the sha1sum of your downloaded file. VMware Workstation Movie Decoder stand alone 6.5.4 -------------------------------------------------- http://download3.vmware.com/software/wkst/VMware-moviedecoder-6.5.4-246459.exe md5sum: ea2ac5907ae4c5c323147fe155443ab8 sha1sum: 5ca8d1fd45f6a7a6f38019b259c3e836ee4e8f29 VMware Workstation 7.0.1 ------------------------ For Windows http://downloads.vmware.com/download/download.do?downloadGroup=WKST-701-WIN Release notes: http://downloads.vmware.com/support/ws7/doc/releasenotes_ws701.html Workstation for Windows 32-bit and 64-bit with VMware Tools md5sum: fc8502a748de3b8f94c5c9571c1f17d2 sha1sum: 3de01b355b17363a92d80200ff5e7267b3bde206 Workstation for Windows 32-bit and 64-bit without VMware Tools md5sum: 6a18ea3847cb727b03f7890f5643db79 sha1sum: 260b019db4619b0d1d775e5c38cc46b6db250984 For Linux http://downloads.vmware.com/download/download.do?downloadGroup=WKST-701-LX Release notes: http://downloads.vmware.com/support/ws7/doc/releasenotes_ws701.html Workstation for Linux 32-bit with VMware Tools md5sum: a896f7aaedde8799f21b52b89f5fc9ef sha1sum: f6d0789afa7927ca154973a071603a0bd098e697 Workstation for Linux 32-bit without VMware Tools md5sum: 59ecd27bdf3f59be3b4df8f04d1b3874 sha1sum: 22e1a475069fca5e8d2446bf14661fa6d894d34f Workstation for Linux 64-bit with VMware Tools md5sum: 808682eaa6b202fa29172821f7378768 sha1sum: a901c45a2a02678b0d1722e8f27152c3af12a7ac Workstation for Linux 64-bit without VMware Tools md5sum: 5116e27e7b13a76693402577bd9fda58 sha1sum: dbcd045a889b95ac14828b8106631b678354e30a VMware Workstation 6.5.4 ------------------------ For Windows http://downloads.vmware.com/download/download.do?downloadGroup=WKST-654-WIN Release Notes: http://downloads.vmware.com/support/ws65/doc/releasenotes_ws654.html Workstation for Windows 32-bit and 64-bit Windows 32-bit and 64-bit .exe md5sum: 2dc393fcc4e78dcf2165098a4938699a sha1sum: acfff457860c8c53c637c01f74f8aaa72d1c9569 For Linux http://downloads.vmware.com/download/download.do?downloadGroup=WKST-654-LX Release Notes: http://downloads.vmware.com/support/ws65/doc/releasenotes_ws654.html Workstation for Linux 32-bit Linux 32-bit .rpm md5sum: 9efb43a604d50e541eb3be7081b8b198 sha1sum: 4240d664f85a11f47288d2279224b26bef92aa8b Workstation for Linux 32-bit Linux 32-bit .bundle md5sum: 38760682ad3b2f6bfb4e40f424c95c2a sha1sum: ec78099322b5fb2a737cd74a1978a5c07382dc8a Workstation for Linux 64-bit Linux 64-bit .rpm md5sum: 24311492bc515e9bc98eff9b2e7d33a2 sha1sum: b4947ef09f740440e8a24fc2ba05c0a7c11b82f5 Workstation for Linux 64-bit Linux 64-bit .bundle md5sum: ed24296705ad48442549d9cb2b3c0d8d sha1sum: 3c0f1efae0a64fa3a41be21b0bfc962f12e0e6d8 VMware Player 3.0.1 ------------------- http://downloads.vmware.com/tryvmware/?p=player&lp=default Release notes: http://downloads.vmware.com/support/player30/doc/releasenotes_player301.html Player for Windows 32-bit and 64-bit md5sum: 78c92c0242c9540f68a629d4ac49c516 sha1sum: 7fc255fcd1a6784458012314db1206ed922e92cf Player for Linux 32-bit (.bundle) md5sum: e7cd19d39c7bbd1aee582743d76a7863 sha1sum: cff76010f0429576288ea1e5a594cd47a2c64f4a Player for Linux 64-bit (.bundle) md5sum: 88b08537c6eea705883dc1755b97738c sha1sum: 84f25370d24c03a18968a4f4c8e06cef3d21c2df VMware VIX API for Windows 32-bit and 64-bit md5sum: 2c46fc7e2516f331eb4dd23154d00a54 sha1sum: 85ceb1b718806c6870e3a918bcc772d1486ccdc9 VMware VIX API for 32-bit Linux md5sum: 8b0994a26363246b5e954f97bd5a088d sha1sum: af93da138a158ee6e05780a5c4042414735987b6 VMware VIX API for 64-bit Linux md5sum: ef7b9890c52b1e333f2357760a7fff85 sha1sum: dfef8531356de78171e13c4c108ebaeb43eaa62d VMware Player 2.5.4 ------------------- http://downloads.vmware.com/download/player/player_reg.html Release notes: http://downloads.vmware.com/support/player25/doc/releasenotes_player254.html Player for Windows 32-bit and 64-bit (.exe) md5sum: 531140a1eeed7d8b71f726b3d32a9174 sha1sum: 2500fa8af48452bd0e97040b80c569c3cb4f73e5 Player for Linux (.rpm) md5sum: 1905f61af490f9760bef54450747e708 sha1sum: cf7444c0a6331439c5479a4158112a60eb0e6e8d Player for Linux (.bundle) md5sum: 74f539005687a4efce7971f7ef019af5 sha1sum: 4c4412c5807ecd00e66886e0e7c43ed61b62aab7 Player for Linux - 64-bit (.rpm) md5sum: 013078d7f6adcdbcbaafbf5e0ae11a39 sha1sum: 7c434173a3fe446ebefce4803bfaa7ab67d1ff72 Player for Linux - 64-bit (.bundle) md5sum: 175ce2f9656ff10a1327c0d48f80c65f sha1sum: bf7acfdcb44bf345d58f79ad1bcb04816f262d22 VMware ACE 2.6.1 ---------------- http://downloads.vmware.com/download/download.do?downloadGroup=ACE-261-WIN Release notes: http://downloads.vmware.com/support/ace26/doc/releasenotes_ace261.html VMware Workstation for 32-bit and 64-bit Windows with tools md5sum: fc8502a748de3b8f94c5c9571c1f17d2 sha1sum: 3de01b355b17363a92d80200ff5e7267b3bde206 VMware Workstation for Windows 32-bit and 64-bit without tools md5sum: 6a18ea3847cb727b03f7890f5643db79 sha1sum: 260b019db4619b0d1d775e5c38cc46b6db250984 ACE Management Server Virtual Appliance md5sum: e26d258c511572064e99774fbac9184c sha1sum: 9363656b70caa11a31a6229451202d9f8203c1f5 ACE Management Server for Windows md5sum: e970828f2a5a62ac108879033a70f4b6 sha1sum: eca89372eacc78c3130781d0d183715055d64798 ACE Management Server for SUSE Enterprise Linux 9 md5sum: 59b3ad5964daef2844e72fd1765590fc sha1sum: 91048de7665f5dc466f06e2ebc4c08f08026a97f ACE Management Server for Red Hat Enterprise Linux 4 md5sum: 6623f6a8a645402a1c8c351ec99a1889 sha1sum: a6d74ba072c5a513fcf8993edebaaf7f8225c05d VMware ACE 2.5.4 ---------------- http://downloads.vmware.com/download/download.do?downloadGroup=ACE-254-WIN Release notes: http://downloads.vmware.com/support/ace25/doc/releasenotes_ace254.html VMware ACE for Windows 32-bit and 64-bit Windows 32-bit and 64-bit .exe md5sum: 2dc393fcc4e78dcf2165098a4938699a sha1sum: acfff457860c8c53c637c01f74f8aaa72d1c9569 ACE Management Server Virtual Appliance AMS Virtual Appliance .zip md5sum: 3935f23d4a074e7a3429a1c80cfd2155 sha1sum: 5b09439a9c840d39ae49fbd7a79732ecd58c52a3 ACE Management Server for Windows Windows .exe md5sum: 1173bd7da6ed330a262ed4e2eff6562c sha1sum: d9bce88a350aa957f3387f870af763875d4d9110 ACE Management Server for SUSE Enterprise Linux 9 SLES 9 .rpm md5sum: 0bec2cf8d6ae3bb6976c9d8cc2573208 sha1sum: f3c6d9ee3357535b1540cedd9e86d723e2ed2134 ACE Management Server for Red Hat Enterprise Linux 4 RHEL 4 .rpm md5sum: 17caa522af79cf1f6b2ebad16a4ac8a5 sha1sum: cdd6e2a4e3d7ad89f95e60f1af024bea7eaba0fe VMware Server 2.0.2 ------------------- http://www.vmware.com/download/server/ Release notes: http://www.vmware.com/support/server2/doc/releasenotes_vmserver202.html VMware Server 2 Version 2.0.2 | 203138 - 10/26/09 507 MB EXE image VMware Server 2 for Windows Operating Systems. A master installer file containing all Windows components of VMware Server. md5sum: a6430bcc16ff7b3a29bb8da1704fc38a sha1sum: 39683e7333732cf879ff0b34f66e693dde0e340b VIX API 1.6 for Windows Version 2.0.2 | 203138 - 10/26/09 37 MB image md5sum: 827e65e70803ec65ade62dd27a74407a sha1sum: a14281bc055271a19be3c88026e92304bc3f0e22 For Linux VMware Server 2 for Linux Operating Systems. Version 2.0.2 | 203138 - 10/26/09 37 MB TAR image md5sum: 95ddea5a0579a35887bd15b083ffea20 sha1sum: 14cf12063a7480f240ccd96178ad4258cb26a747 VMware Server 2 for Linux Operating Systems 64-bit version. Version 2.0.2 | 203138 - 10/26/09 452 MB RPM image md5sum: 35c8b176601133749e4055e0034f8be6 sha1sum: e8dc842d89899df5cd3e1136af76f19ca5ccbece The core application needed to run VMware Server 2, 64-bit version. Version 2.0.2 | 203138 - 10/26/09 451 MB TAR image md5sum: cc7aef813008eeb7150c21547d431b39 sha1sum: b65d3d46dc947fc7995bda354c4947afabd23474 VMware Fusion 3.0.2 ------------------- http://downloads.vmware.com/download/download.do?downloadGroup=FUS-302 Release notes: http://downloads.vmware.com/support/fusion3/doc/releasenotes_fusion_302.html VMware Fusion 3.0.2 (for Intel-based Macs) md5sum: aa17278a4a668eeb9f9467e4e3111ccc sha1sum: 58c3d63705ac90839f7c1ae14264177e1fd56df3 VMware Fusion 3.0.2 Light for Mac (for Intel-based Macs) md5sum: 052ecbbfc4f59a85e2d08b4bd3ef0896 sha1sum: 61e00487f4c649588099647d4a5f47ddf5b8ad01 VMware Fusion 2.0.7 ------------------- http://downloads.vmware.com/download/download.do?downloadGroup=FUS-207 Release notes: http://downloads.vmware.com/support/fusion2/doc/releasenotes_fusion_207.html VMware Fusion 2.0.7 (for Intel-based Macs) md5sum: a293f5ce6ccc227760640753386e9da6 sha1sum: ddfda92f9baf30e536bc485e42325d173a1aa370 VMware Fusion 2.0.7 Light (for Intel-based Macs) md5sum: d4772d118fb90323f598849e70c21189 sha1sum: 5c1df1597e77ebe0f0555749b281008ca5f2fb77 VIX API 1.7 Version: 1.7 | 2009-08-26 | 186713 ---------------------------------------------- VIX API for Window 32-bit and 64-bit Main installation file for Windows 32-bit and 64-bit host md5sum:b494fc3092f07d0f29cc06a19fe61306 sha1sum:aa8638424cb7f25c1e42343134ac9f0bd2c2e0c9 VIX API for Linux 32-bit md5sum:6b0ed8872d8b714363cddc68b6a77008 sha1sum:8a9b12a61641394b347488119a7120eaa47dc2a1 VIX API for Linux 64-bit md5sum:d57aa9f98058d5a386c18e14cc05bf4d sha1sum:3b7d4461ea257e795b322cc080f4ae29a230666b VIX API Version: 1.8.1 | 2009-10-11 | 207905 --------------------------------------------- VIX API for Windows 32-bit and 64-bit md5sum:4f21e4cb518767bc08045f5a39f5d41f sha1sum:5b8275c549f9d9498bd2ed078557f1ce1986ac12 VIX API for Linux 32-bit md5sum:f347e94d907c26754540d59956ee5d53 sha1sum:6ddc6c9371ba127d04bc83bd55988a6c83366907 VIX API for Linux 64-bit md5sum:b8a3982072d0d42c0c37dd7eb49d686c sha1sum:d044ac3dd42f806bc4ff48ddf584b5e3d82910c8 VIX API Version: 1.10 Beta | 01/28/10 | 222403 ---------------------------------------------- VIX API for Windows 32-bit and 64-bit md5sum:ac5b6e9197cb68c302bfac9ed683e3af sha1sum:0d942e7409e88e684bdb65811e7be7f47d631a73 VIX API for Linux 32-bit md5sum:07d1989d042e317eb9d2b3daf269dda7 sha1sum:1e3840d426d7dfff53fa7e1bd22b09b56cf2362c VIX API for Linux 64-bit md5sum:9b345008e0adec3c044988307294944b sha1sum:7a54a893369c2227f7e8058430c40983168c6e0b ESXi ---- ESXi 4.0 bulletin ESXi400-201002402-BG https://hostupdate.vmware.com/software/VUM/OFFLINE/release-193-20100228-731251/ESXi400-201002001.zip md5sum: e5aa2968d389594abdc59cbac7b0183d sha1sum: bb50b3ad7934e3f9e24edc879b35e83b357343b2 http://kb.vmware.com/kb/1018404 ESXi 3.5 -------- ESXi 3.5 patch ESXe350-200912402-T-BG was first contained in ESXe350-200912401-O-BG from December 2009. The same patch, ESXe350-200912402-T-BG, is also contained in ESXe350-201002401-O-SG from February 2010 ESXi 3.5 security update. In latest non-security ESXi 3.5 update, ESXe350-201003402-T-BG is also included in ESXe350-201003401-O-BG from March 2010. ESXe350-201002401-O-SG (latest security update) http://download3.vmware.com/software/vi/ESXe350-201002401-O-SG.zip md5sum: 0c8d4d1c0e3c2aed9f785cf081225d83 http://kb.vmware.com/kb/1015047 (Vi Client) http://kb.vmware.com/kb/1016665 (VM Tools) http://kb.vmware.com/kb/1017685 (Firmware) The three ESXi patches for Firmware "I", VMware Tools "T," and the VI Client "C" are contained in a single offline "O" download file. ESX --- ESX 4.0 bulletin ESX400-201002401-BG https://hostupdate.vmware.com/software/VUM/OFFLINE/release-192-20100228-732240/ESX400-201002001.zip md5sum: de62cbccaffa4b2b6831617f18c1ccb4 sha1sum: 4083f191fa4acd6600c9a87e4852f9f5700e91ab http://kb.vmware.com/kb/1018403 Note: ESX400-201002001 contains the bundle with the security fix, ESX400-201002401-BG To install an individual bulletin use esxupdate with the -b option. esxupdate --bundle ESX400-201002001 -b ESX400-201002401-BG ESX 4.0 bulletin ESX400-200911223-UG https://hostupdate.vmware.com/software/VUM/OFFLINE/release-166-20091202-254879/ESX-4.0.0-update01a.zip md5sum: 99c1fcafbf0ca105ce73840d686e9914 sha1sum: aa8a23416271bc28b6b8f6bdbe00045e36314ebb http://kb.vmware.com/kb/1014842 Note: ESX-4.0.0-update01a contains the bundle with the security fix, ESX400-200911223-UG To install an individual bulletin use esxupdate with the -b option. esxupdate --bundle ESX-4.0.0-update01a -b ESX400-200911223-UG ESX 3.5 patch ESX350-200912401-BG http://download3.vmware.com/software/vi/ESX350-200912401-BG.zip md5sum: f1d3589745b4ae933554785aef22bacc sha1sum: d1e5a9209b165d43d75f076e556fc028bec4cc47 http://kb.vmware.com/kb/1016657 ESX 3.0.3 patch ESX303-201002203-UG http://download3.vmware.com/software/vi/ESX303-201002203-UG.zip md5sum: 49ee56b687707cbe6999836c315f081a http://kb.vmware.com/kb/1018030 ESX 2.5.5 Upgrade Patch 15 http://download3.vmware.com/software/esx/esx-2.5.5-191611-upgrade.tar.gz md5sum: c346fe510b6e51145570e03083f77357 sha1sum: ef6b19247825fb3fe2c55f8fda3cdd05ac7bb1f4 http://www.vmware.com/support/esx25/doc/esx-255-200910-patch.html 5. References http://www.acrossecurity.com/advisories.htm http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1564 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1565 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2042 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3707 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3732 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1138 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1139 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1140 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1142 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1141 6. Change log 2010-04-09 VMSA-2010-0007 Initial security advisory after release of Workstation 6.5.4 and Fusion 2.0.7 on 2010-04-08. - ------------------------------------------------------------------------ 7. Contact E-mail list for product security notifications and announcements: http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce This Security Advisory is posted to the following lists: * security-announce at lists.vmware.com * bugtraq at securityfocus.com * full-disclosure at lists.grok.org.uk E-mail: security at vmware.com PGP key at: http://kb.vmware.com/kb/1055 VMware Security Center http://www.vmware.com/security VMware security response policy http://www.vmware.com/support/policies/security_response.html General support life cycle policy http://www.vmware.com/support/policies/eos.html VMware Infrastructure support life cycle policy http://www.vmware.com/support/policies/eos_vi.html Copyright 2010 VMware Inc. All rights reserved. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (MingW32) iD8DBQFLvvM8S2KysvBH1xkRAgu/AJ9RrzlOq/5Ug0t8R4qoi/UwDVJDpACbBGgT d58bjKG6Ic7m/TsoJP4M2tw= =Q1zv -----END PGP SIGNATURE----- . Background ========== VMware Player, Server, and Workstation allow emulation of a complete PC on a PC without the usual performance overhead of most emulators. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-emulation/vmware-player <= 2.5.5.328052 Vulnerable! 2 app-emulation/vmware-workstation <= 6.5.5.328052 Vulnerable! 3 app-emulation/vmware-server <= 1.0.9.156507 Vulnerable! ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers. Please review the CVE identifiers referenced below for details. Impact ====== Local users may be able to gain escalated privileges, cause a Denial of Service, or gain sensitive information. A remote attacker could entice a user to open a specially crafted file, possibly resulting in the remote execution of arbitrary code, or a Denial of Service. Remote attackers also may be able to spoof DNS traffic, read arbitrary files, or inject arbitrary web script to the VMware Server Console. Furthermore, guest OS users may be able to execute arbitrary code on the host OS, gain escalated privileges on the guest OS, or cause a Denial of Service (crash the host OS). Workaround ========== There is no known workaround at this time. Gentoo discontinued support for VMware Workstation. We recommend that users unmerge VMware Server: # emerge --unmerge "app-emulation/vmware-server" References ========== [ 1 ] CVE-2007-5269 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5269 [ 2 ] CVE-2007-5503 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5503 [ 3 ] CVE-2007-5671 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5671 [ 4 ] CVE-2008-0967 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0967 [ 5 ] CVE-2008-1340 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1340 [ 6 ] CVE-2008-1361 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1361 [ 7 ] CVE-2008-1362 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1362 [ 8 ] CVE-2008-1363 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1363 [ 9 ] CVE-2008-1364 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1364 [ 10 ] CVE-2008-1392 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1392 [ 11 ] CVE-2008-1447 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1447 [ 12 ] CVE-2008-1806 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1806 [ 13 ] CVE-2008-1807 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1807 [ 14 ] CVE-2008-1808 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1808 [ 15 ] CVE-2008-2098 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2098 [ 16 ] CVE-2008-2100 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2100 [ 17 ] CVE-2008-2101 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2101 [ 18 ] CVE-2008-4915 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4915 [ 19 ] CVE-2008-4916 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4916 [ 20 ] CVE-2008-4917 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4917 [ 21 ] CVE-2009-0040 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0040 [ 22 ] CVE-2009-0909 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0909 [ 23 ] CVE-2009-0910 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0910 [ 24 ] CVE-2009-1244 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1244 [ 25 ] CVE-2009-2267 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-2267 [ 26 ] CVE-2009-3707 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3707 [ 27 ] CVE-2009-3732 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3732 [ 28 ] CVE-2009-3733 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3733 [ 29 ] CVE-2009-4811 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-4811 [ 30 ] CVE-2010-1137 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1137 [ 31 ] CVE-2010-1138 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1138 [ 32 ] CVE-2010-1139 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1139 [ 33 ] CVE-2010-1140 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1140 [ 34 ] CVE-2010-1141 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1141 [ 35 ] CVE-2010-1142 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1142 [ 36 ] CVE-2010-1143 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1143 [ 37 ] CVE-2011-3868 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3868 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201209-25.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5

Trust: 4.77

sources: NVD: CVE-2010-1141 // CERT/CC: VU#707943 // JVNDB: JVNDB-2010-001364 // JVNDB: JVNDB-2010-001999 // CNVD: CNVD-2010-0574 // BID: 1699 // BID: 39392 // IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // VULMON: CVE-2010-1141 // PACKETSTORM: 88215 // PACKETSTORM: 117012

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 1.0

sources: IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // CNVD: CNVD-2010-0574

AFFECTED PRODUCTS

vendor:vmwaremodel:esxscope:eqversion:2.5.5

Trust: 3.0

vendor:vmwaremodel:esxscope:eqversion:3.0.3

Trust: 3.0

vendor:vmwaremodel:esxscope:eqversion:3.5

Trust: 3.0

vendor:vmwaremodel:esxscope:eqversion:4.0

Trust: 3.0

vendor:vmwaremodel:esxiscope:eqversion:3.5

Trust: 3.0

vendor:vmwaremodel:esxiscope:eqversion:4.0

Trust: 3.0

vendor:vmwaremodel:fusionscope:eqversion:2.0.5

Trust: 1.9

vendor:vmwaremodel:fusionscope:eqversion:2.0.4

Trust: 1.9

vendor:vmwaremodel:fusionscope:eqversion:2.0.3

Trust: 1.9

vendor:vmwaremodel:fusionscope:eqversion:2.0

Trust: 1.6

vendor:vmwaremodel:serverscope:eqversion:2.x

Trust: 1.4

vendor:vmwaremodel:fusionscope:eqversion:2.x

Trust: 1.4

vendor:vmwaremodel:playerscope:eqversion:2.5.x

Trust: 1.4

vendor:vmwaremodel:acescope:eqversion:2.5.x

Trust: 1.4

vendor:vmwaremodel:workstationscope:eqversion:6.5.3

Trust: 1.3

vendor:vmwaremodel:workstationscope:eqversion:6.5.2

Trust: 1.3

vendor:vmwaremodel:workstationscope:eqversion:6.5.1

Trust: 1.3

vendor:vmwaremodel:serverscope:eqversion:2.0.2

Trust: 1.3

vendor:vmwaremodel:serverscope:eqversion:2.0.1

Trust: 1.3

vendor:vmwaremodel:playerscope:eqversion:2.5.3

Trust: 1.3

vendor:vmwaremodel:playerscope:eqversion:2.5.2

Trust: 1.3

vendor:vmwaremodel:playerscope:eqversion:2.5.1

Trust: 1.3

vendor:vmwaremodel:acescope:eqversion:2.5.2

Trust: 1.0

vendor:vmwaremodel:acescope:eqversion:2.5.3

Trust: 1.0

vendor:vmwaremodel:fusionscope:eqversion:2.0.2

Trust: 1.0

vendor:vmwaremodel:workstationscope:eqversion:6.5.0

Trust: 1.0

vendor:vmwaremodel:acescope:eqversion:2.5.1

Trust: 1.0

vendor:vmwaremodel:fusionscope:eqversion:2.0.1

Trust: 1.0

vendor:vmwaremodel:fusionscope:eqversion:3.0

Trust: 1.0

vendor:vmwaremodel:playerscope:eqversion:2.5

Trust: 1.0

vendor:vmwaremodel:acescope:eqversion:2.5.0

Trust: 1.0

vendor:vmwaremodel:serverscope:eqversion:2.0.0

Trust: 1.0

vendor:abventmodel: - scope: - version: -

Trust: 0.8

vendor:adobemodel: - scope: - version: -

Trust: 0.8

vendor:applemodel: - scope: - version: -

Trust: 0.8

vendor:atomix productionsmodel: - scope: - version: -

Trust: 0.8

vendor:autodeskmodel: - scope: - version: -

Trust: 0.8

vendor:avast antivirusmodel: - scope: - version: -

Trust: 0.8

vendor:bentleymodel: - scope: - version: -

Trust: 0.8

vendor:bittorrentmodel: - scope: - version: -

Trust: 0.8

vendor:bitmanagementmodel: - scope: - version: -

Trust: 0.8

vendor:ciscomodel: - scope: - version: -

Trust: 0.8

vendor:conceivamodel: - scope: - version: -

Trust: 0.8

vendor:corelmodel: - scope: - version: -

Trust: 0.8

vendor:cyberlinkmodel: - scope: - version: -

Trust: 0.8

vendor:daemon toolsmodel: - scope: - version: -

Trust: 0.8

vendor:dassault systemesmodel: - scope: - version: -

Trust: 0.8

vendor:divxmodel: - scope: - version: -

Trust: 0.8

vendor:ezbmodel: - scope: - version: -

Trust: 0.8

vendor:ecavamodel: - scope: - version: -

Trust: 0.8

vendor:fengtaomodel: - scope: - version: -

Trust: 0.8

vendor:gfimodel: - scope: - version: -

Trust: 0.8

vendor:graphisoftmodel: - scope: - version: -

Trust: 0.8

vendor:gilles vollantmodel: - scope: - version: -

Trust: 0.8

vendor:guidancemodel: - scope: - version: -

Trust: 0.8

vendor:httrackmodel: - scope: - version: -

Trust: 0.8

vendor:ibmmodel: - scope: - version: -

Trust: 0.8

vendor:izarcmodel: - scope: - version: -

Trust: 0.8

vendor:inkscapemodel: - scope: - version: -

Trust: 0.8

vendor:maxthonmodel: - scope: - version: -

Trust: 0.8

vendor:microchipmodel: - scope: - version: -

Trust: 0.8

vendor:microsoftmodel: - scope: - version: -

Trust: 0.8

vendor:mozillamodel: - scope: - version: -

Trust: 0.8

vendor:netstumblermodel: - scope: - version: -

Trust: 0.8

vendor:nokiamodel: - scope: - version: -

Trust: 0.8

vendor:normanmodel: - scope: - version: -

Trust: 0.8

vendor:nullsoftmodel: - scope: - version: -

Trust: 0.8

vendor:operamodel: - scope: - version: -

Trust: 0.8

vendor:pgpmodel: - scope: - version: -

Trust: 0.8

vendor:pkwaremodel: - scope: - version: -

Trust: 0.8

vendor:pixiamodel: - scope: - version: -

Trust: 0.8

vendor:realnetworksmodel: - scope: - version: -

Trust: 0.8

vendor:sisoftwaremodel: - scope: - version: -

Trust: 0.8

vendor:smart projectsmodel: - scope: - version: -

Trust: 0.8

vendor:sonicmodel: - scope: - version: -

Trust: 0.8

vendor:sonymodel: - scope: - version: -

Trust: 0.8

vendor:sweetscapemodel: - scope: - version: -

Trust: 0.8

vendor:teamviewermodel: - scope: - version: -

Trust: 0.8

vendor:techsmithmodel: - scope: - version: -

Trust: 0.8

vendor:tortoisesvnmodel: - scope: - version: -

Trust: 0.8

vendor:trackermodel: - scope: - version: -

Trust: 0.8

vendor:vmwaremodel: - scope: - version: -

Trust: 0.8

vendor:videolanmodel: - scope: - version: -

Trust: 0.8

vendor:winmergemodel: - scope: - version: -

Trust: 0.8

vendor:wiresharkmodel: - scope: - version: -

Trust: 0.8

vendor:wolters kluwermodel: - scope: - version: -

Trust: 0.8

vendor:vmwaremodel:workstationscope:eqversion:6.5.x

Trust: 0.8

vendor:claybirdmodel:lhaforgescope:lteversion:1.5.1 and earlier

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v8.3

Trust: 0.8

vendor:necmodel:enterprisedirectoryserverscope: - version: -

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v8.4

Trust: 0.8

vendor:necmodel:securebranchscope:eqversion:soho xp dedicated application securebranch accessmanager ver2.2.18 before

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v6.4

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v6.2

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v8.2

Trust: 0.8

vendor:ponmodel:explzhscope:lteversion:v.5.65 and earlier

Trust: 0.8

vendor:applemodel:itunesscope:eqversion:9

Trust: 0.8

vendor:necmodel:securebranchscope:eqversion:soho vista dedicated application securebranch accessmanager ver3.0.13 before

Trust: 0.8

vendor:lunascapemodel:lunascapescope:lteversion:6.3.0 and earlier

Trust: 0.8

vendor:necmodel:securefingerscope:eqversion:fingerprint authentication runtime ( c / s edition) all versions

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:client v7.1

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v6.5

Trust: 0.8

vendor:necmodel:esmpro/serveragentservicescope: - version: -

Trust: 0.8

vendor:miccomodel:lhmeltscope:lteversion:1.65.1.2 and earlier

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:download server v7.1

Trust: 0.8

vendor:necmodel:esmpro/serveragentscope: - version: -

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:client v5.3

Trust: 0.8

vendor:terao progressmodel:terapadscope:lteversion:ver.1.00\u3000 and earlier

Trust: 0.8

vendor:fenrirmodel:sleipnirscope:lteversion:2.9.5 and earlier

Trust: 0.8

vendor:necmodel:securefingerscope:eqversion:fingerprint authentication utility ad all versions

Trust: 0.8

vendor:schezomodel:lhaplusscope:lteversion:1.57 and earlier

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:v6.3

Trust: 0.8

vendor:necmodel:infoframe documentskipperscope: - version: -

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:downloader v5.3

Trust: 0.8

vendor:necmodel:webotxscope:eqversion:download contents v8.2

Trust: 0.8

vendor:vmwaremodel:workstationscope:eqversion:5.5.x

Trust: 0.6

vendor:workstationmodel: - scope:eqversion:6.5.0

Trust: 0.4

vendor:workstationmodel: - scope:eqversion:6.5.1

Trust: 0.4

vendor:workstationmodel: - scope:eqversion:6.5.2

Trust: 0.4

vendor:workstationmodel: - scope:eqversion:6.5.3

Trust: 0.4

vendor:playermodel: - scope:eqversion:2.5

Trust: 0.4

vendor:playermodel: - scope:eqversion:2.5.1

Trust: 0.4

vendor:playermodel: - scope:eqversion:2.5.2

Trust: 0.4

vendor:playermodel: - scope:eqversion:2.5.3

Trust: 0.4

vendor:acemodel: - scope:eqversion:2.5.0

Trust: 0.4

vendor:acemodel: - scope:eqversion:2.5.1

Trust: 0.4

vendor:acemodel: - scope:eqversion:2.5.2

Trust: 0.4

vendor:acemodel: - scope:eqversion:2.5.3

Trust: 0.4

vendor:servermodel: - scope:eqversion:2.0.0

Trust: 0.4

vendor:servermodel: - scope:eqversion:2.0.1

Trust: 0.4

vendor:servermodel: - scope:eqversion:2.0.2

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0.1

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0.2

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0.3

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0.4

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:2.0.5

Trust: 0.4

vendor:fusionmodel: - scope:eqversion:3.0

Trust: 0.4

vendor:esximodel: - scope:eqversion:3.5

Trust: 0.4

vendor:esximodel: - scope:eqversion:4.0

Trust: 0.4

vendor:esxmodel: - scope:eqversion:2.5.5

Trust: 0.4

vendor:esxmodel: - scope:eqversion:3.0.3

Trust: 0.4

vendor:esxmodel: - scope:eqversion:3.5

Trust: 0.4

vendor:esxmodel: - scope:eqversion:4.0

Trust: 0.4

vendor:microsoftmodel:windows xp professionalscope: - version: -

Trust: 0.3

vendor:microsoftmodel:windows xp homescope: - version: -

Trust: 0.3

vendor:microsoftmodel:windows xp 64-bit editionscope: - version: -

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp6ascope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp6scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp5scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp4scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp3scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp2scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstation sp1scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt workstationscope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp6scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp5scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp4scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp3scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp2scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal server sp1scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt terminal serverscope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp6ascope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp6scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp5scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp4scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp3scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp2scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt server sp1scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt serverscope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp6ascope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp6scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp5scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp4scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp3scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp2scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise server sp1scope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows nt enterprise serverscope:eqversion:4.0

Trust: 0.3

vendor:microsoftmodel:windows mescope: - version: -

Trust: 0.3

vendor:microsoftmodel:windows 98sescope: - version: -

Trust: 0.3

vendor:microsoftmodel:windows sp1scope:eqversion:98

Trust: 0.3

vendor:microsoftmodel:windowsscope:eqversion:98

Trust: 0.3

vendor:microsoftmodel:windows sr2scope:eqversion:95

Trust: 0.3

vendor:microsoftmodel:windows sp1scope:eqversion:95

Trust: 0.3

vendor:microsoftmodel:windowsscope:eqversion:95

Trust: 0.3

vendor:microsoftmodel:windows server sp2scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows server sp1scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows serverscope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows professional sp2scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows professional sp1scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows professionalscope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows datacenter server sp2scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows datacenter server sp1scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows datacenter serverscope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows advanced server sp2scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows advanced server sp1scope:eqversion:2000

Trust: 0.3

vendor:microsoftmodel:windows advanced serverscope:eqversion:2000

Trust: 0.3

vendor:vmwaremodel:workstation buildscope:eqversion:6.5118166

Trust: 0.3

vendor:vmwaremodel:server buildscope:eqversion:2.0.2203138

Trust: 0.3

vendor:vmwaremodel:server buildscope:eqversion:2.0.1156745

Trust: 0.3

vendor:vmwaremodel:serverscope:eqversion:2.0

Trust: 0.3

vendor:vmwaremodel:playerscope:eqversion:2.5.4

Trust: 0.3

vendor:vmwaremodel:player buildscope:eqversion:2.5118166

Trust: 0.3

vendor:vmwaremodel:movie decoderscope:eqversion:6.5.4

Trust: 0.3

vendor:vmwaremodel:fusionscope:eqversion:2.0.6

Trust: 0.3

vendor:vmwaremodel:fusion buildscope:eqversion:2.0.2147997

Trust: 0.3

vendor:vmwaremodel:fusionscope:eqversion:2

Trust: 0.3

vendor:vmwaremodel:esxi serverscope:eqversion:4.0

Trust: 0.3

vendor:vmwaremodel:esxi serverscope:eqversion:3.5

Trust: 0.3

vendor:vmwaremodel:esx serverscope:eqversion:3.0.3

Trust: 0.3

vendor:vmwaremodel:esx serverscope:eqversion:2.5.5

Trust: 0.3

vendor:vmwaremodel:esx serverscope:eqversion:4.0

Trust: 0.3

vendor:vmwaremodel:esx serverscope:eqversion:3.5

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

sources: IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // CERT/CC: VU#707943 // CNVD: CNVD-2010-0574 // BID: 1699 // BID: 39392 // JVNDB: JVNDB-2010-001364 // JVNDB: JVNDB-2010-001999 // CNNVD: CNNVD-201004-160 // NVD: CVE-2010-1141

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-1141
value: HIGH

Trust: 1.0

CARNEGIE MELLON: VU#707943
value: 64.13

Trust: 0.8

NVD: CVE-2010-1141
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201004-160
value: HIGH

Trust: 0.6

IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1
value: HIGH

Trust: 0.2

IVD: 46c824c0-2356-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

VULMON: CVE-2010-1141
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2010-1141
severity: HIGH
baseScore: 8.5
vectorString: AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1
severity: HIGH
baseScore: 8.5
vectorString: AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: 46c824c0-2356-11e6-abef-000c29c66e3d
severity: HIGH
baseScore: 8.5
vectorString: AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // CERT/CC: VU#707943 // VULMON: CVE-2010-1141 // JVNDB: JVNDB-2010-001364 // CNNVD: CNNVD-201004-160 // NVD: CVE-2010-1141

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.8

sources: JVNDB: JVNDB-2010-001364 // NVD: CVE-2010-1141

THREAT TYPE

network

Trust: 0.6

sources: BID: 1699 // BID: 39392

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201004-160

CONFIGURATIONS

sources: JVNDB: JVNDB-2010-001364

PATCH

title:VMSA-2010-0007url:http://www.vmware.com/security/advisories/VMSA-2010-0007.html

Trust: 0.8

title:HT4105url:http://support.apple.com/kb/HT4105

Trust: 0.8

title:HT4105url:http://support.apple.com/kb/HT4105?viewlocale=ja_JP

Trust: 0.8

title:Opera Softwareからの情報url:http://jvn.jp/vu/JVNVU707943/844993/index.html

Trust: 0.8

title:Adobeからの情報url:http://jvn.jp/vu/JVNVU707943/244523/index.html

Trust: 0.8

title:LhaForgeurl:http://claybird.sakura.ne.jp/garage/lhaforge/index.html

Trust: 0.8

title:2010.2F9.2F7_ver_6.3.1url:http://lunapedia.lunascape.jp/index.php?title=Lunascape6#2010.2F9.2F7_ver_6.3.1

Trust: 0.8

title:Another technique for Fixing DLL Preloading attacksurl:http://blogs.msdn.com/b/david_leblanc/archive/2010/08/23/another-technique-for-fixing-dll-preloading-attacks.aspx

Trust: 0.8

title:More information about the DLL Preloading remote attack vectorurl:http://blogs.technet.com/b/srd/archive/2010/08/23/more-information-about-dll-preloading-remote-attack-vector.aspx

Trust: 0.8

title:Secure loading of libraries to prevent DLL preloading attacks - Guidance for Software Developers (Word 文書)url:http://blogs.technet.com/cfs-file.ashx/__key/CommunityServer-Components-PostAttachments/00-03-35-14-21/Secure-loading-of-libraries-to-prevent-DLL-Preloading.docx

Trust: 0.8

title:Dynamic-Link Library Securityurl:http://msdn.microsoft.com/ja-jp/library/ff919712%28v=VS.85%29.aspx

Trust: 0.8

title:2269637url:http://www.microsoft.com/technet/security/advisory/2269637.mspx

Trust: 0.8

title:Load Library Safelyurl:https://blogs.technet.microsoft.com/srd/2014/05/13/load-library-safely/

Trust: 0.8

title:DLL 検索パスアルゴリズムを制御する新しい CWDIllegalInDllSearch レジストリエントリについてurl:http://support.microsoft.com/kb/2264107

Trust: 0.8

title:NV11-003url:http://www.nec.co.jp/security-info/secinfo/nv11-003.html

Trust: 0.8

title:Microsoft Windows における DLL 読み込みに関する脆弱性url:http://www.ponsoftware.com/archiver/bug.htm#load_lib

Trust: 0.8

title:検索パスの問題に起因する脆弱性url:http://www7a.biglobe.ne.jp/~schezo/dll_vul.html

Trust: 0.8

title:Top Pageurl:http://www5f.biglobe.ne.jp/~t-susumu

Trust: 0.8

title:MHSVI#20100824url:http://homepage3.nifty.com/micco/vul/2010/mhsvi20100824.htm

Trust: 0.8

title:sleipnirsleipnir_295url:http://www.fenrir.co.jp/blog/2010/10/sleipnirsleipnir_295.html

Trust: 0.8

title:2269637url:https://www.microsoft.com/japan/technet/security/advisory/2269637.mspx

Trust: 0.8

title:新たなリモートの攻撃手法に関するアドバイザリ 2269637 を公開url:http://blogs.technet.com/b/jpsecurity/archive/2010/08/24/3351474.aspx

Trust: 0.8

title:ライブラリを安全にロードして DLL のプリロード攻撃を防ぐ - ソフトウェア開発者向けガイダンス (Word 文書)url:http://blogs.technet.com/cfs-file.ashx/__key/CommunityServer-Components-PostAttachments/00-03-35-14-74/Secure-loading-of-libraries-to-prevent-DLL-Preloading_5F00_J.docx

Trust: 0.8

title:TA10-238Aurl:http://software.fujitsu.com/jp/security/vulnerabilities/ta10-238a.html

Trust: 0.8

title:VMSA - 2010 - 0007: VMware Managed Products, vCenter Server and ESX Multiple Security Patchesurl:https://www.cnvd.org.cn/patchInfo/show/155

Trust: 0.6

title:VMware Security Advisories: VMware hosted products, vCenter Server and ESX patches resolve multiple security issuesurl:https://vulmon.com/vendoradvisory?qidtp=vmware_security_advisories&qid=9a156b22cf9a31c993f6585b6881d5a5

Trust: 0.1

sources: CNVD: CNVD-2010-0574 // VULMON: CVE-2010-1141 // JVNDB: JVNDB-2010-001364 // JVNDB: JVNDB-2010-001999

EXTERNAL IDS

db:NVDid:CVE-2010-1141

Trust: 4.0

db:SECUNIAid:39198

Trust: 3.1

db:SECUNIAid:39206

Trust: 2.5

db:SECTRACKid:1023832

Trust: 1.8

db:SECTRACKid:1023833

Trust: 1.8

db:CERT/CCid:VU#707943

Trust: 1.6

db:USCERTid:TA10-238A

Trust: 1.6

db:BIDid:39392

Trust: 1.2

db:BIDid:1699

Trust: 1.1

db:CNVDid:CNVD-2010-0574

Trust: 1.0

db:CNNVDid:CNNVD-201004-160

Trust: 1.0

db:VUPENid:ADV-2010-0852

Trust: 0.8

db:JVNDBid:JVNDB-2010-001364

Trust: 0.8

db:JVNDBid:JVNDB-2010-001999

Trust: 0.8

db:NSFOCUSid:14789

Trust: 0.6

db:NSFOCUSid:14788※14789

Trust: 0.6

db:NSFOCUSid:14788

Trust: 0.6

db:BUGTRAQid:20100409 VMSA-2010-0007 VMWARE HOSTED PRODUCTS, VCENTER SERVER AND ESX PATCHES RESOLVE MULTIPLE SECURITY ISSUES

Trust: 0.6

db:MLISTid:[SECURITY-ANNOUNCE] 20100409 VMSA-2010-0007 VMWARE HOSTED PRODUCTS, VCENTER SERVER AND ESX PATCHES RESOLVE MULTIPLE SECURITY ISSUES

Trust: 0.6

db:FULLDISCid:20100409 VMSA-2010-0007 VMWARE HOSTED PRODUCTS, VCENTER SERVER AND ESX PATCHES RESOLVE MULTIPLE SECURITY ISSUES

Trust: 0.6

db:IVDid:7D7C8FB0-463F-11E9-A735-000C29342CB1

Trust: 0.2

db:IVDid:46C824C0-2356-11E6-ABEF-000C29C66E3D

Trust: 0.2

db:VULMONid:CVE-2010-1141

Trust: 0.1

db:PACKETSTORMid:88215

Trust: 0.1

db:PACKETSTORMid:117012

Trust: 0.1

sources: IVD: 7d7c8fb0-463f-11e9-a735-000c29342cb1 // IVD: 46c824c0-2356-11e6-abef-000c29c66e3d // CERT/CC: VU#707943 // CNVD: CNVD-2010-0574 // VULMON: CVE-2010-1141 // BID: 1699 // BID: 39392 // JVNDB: JVNDB-2010-001364 // JVNDB: JVNDB-2010-001999 // PACKETSTORM: 88215 // PACKETSTORM: 117012 // CNNVD: CNNVD-201004-160 // NVD: CVE-2010-1141

REFERENCES

url:http://secunia.com/advisories/39198

Trust: 3.1

url:http://secunia.com/advisories/39206

Trust: 2.5

url:http://www.securitytracker.com/id?1023832

Trust: 1.9

url:http://www.securitytracker.com/id?1023833

Trust: 1.9

url:http://www.vmware.com/security/advisories/vmsa-2010-0007.html

Trust: 1.8

url:http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html

Trust: 1.7

url:http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html

Trust: 1.7

url:http://lists.vmware.com/pipermail/security-announce/2010/000090.html

Trust: 1.7

url:http://www.us-cert.gov/cas/techalerts/ta10-238a.html

Trust: 1.6

url:http://security.gentoo.org/glsa/glsa-201209-25.xml

Trust: 1.2

url:http://www.acrossecurity.com/aspr/aspr-2010-04-12-1-pub.txt

Trust: 1.1

url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a7020

Trust: 1.1

url:http://www.securityfocus.com/bid/39392

Trust: 0.9

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1141

Trust: 0.9

url:http://www.cert.org/blogs/vuls/2008/09/carpet_bombing_and_directory_p.html

Trust: 0.8

url:http://blog.mandiant.com/archives/1207

Trust: 0.8

url:http://msdn.microsoft.com/en-us/library/aa297182

Trust: 0.8

url:http://blog.zoller.lu/2010/08/cve-2010-xn-loadlibrarygetprocaddress.html

Trust: 0.8

url:http://msdn.microsoft.com/en-us/library/ms684175%28vs.85%29.aspx

Trust: 0.8

url:http://www.acrossecurity.com/aspr/aspr-2010-04-12-2-pub.txt

Trust: 0.8

url:http://www.acrossecurity.com/aspr/aspr-2010-08-18-1-pub.txt

Trust: 0.8

url:http://www.securityfocus.com/bid/1699/discuss

Trust: 0.8

url:http://blog.metasploit.com/2010/08/exploiting-dll-hijacking-flaws.html

Trust: 0.8

url:http://blog.rapid7.com/?p=5325

Trust: 0.8

url:http://www.cs.ucdavis.edu/research/tech-reports/2010/cse-2010-2.pdf

Trust: 0.8

url:https://www.microsoft.com/technet/security/advisory/2269637.mspx

Trust: 0.8

url:http://blogs.technet.com/b/srd/archive/2010/08/23/more-information-about-dll-preloading-remote-attack-vector.aspx

Trust: 0.8

url:http://blogs.msdn.com/b/david_leblanc/archive/2010/08/23/another-technique-for-fixing-dll-preloading-attacks.aspx

Trust: 0.8

url:http://support.microsoft.com/kb/2264107

Trust: 0.8

url:http://www.guninski.com/officedll.html

Trust: 0.8

url:http://jvn.jp/cert/jvnta10-238a/index.html

Trust: 0.8

url:http://jvn.jp/tr/jvntr-2010-23

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1141

Trust: 0.8

url:http://www.vupen.com/english/advisories/2010/0852

Trust: 0.8

url:http://www.ipa.go.jp/about/press/20101111.html

Trust: 0.8

url:http://jvn.jp/cert/jvnta10-238a

Trust: 0.8

url:http://jvn.jp/cert/jvnvu707943

Trust: 0.8

url:http://jvn.jp/tr/jvntr-2010-23/

Trust: 0.8

url:http://www.kb.cert.org/vuls/id/707943

Trust: 0.8

url:http://www.nsfocus.net/vulndb/14788※14789

Trust: 0.6

url:https://products.office.com/en-us/products

Trust: 0.3

url:http://msdn.microsoft.com/library/default.asp?url=/library/en-us/vccore98/html/_core_the_search_path_used_by_windows_to_locate_a_dll.asp

Trust: 0.3

url:http://www.vmware.com

Trust: 0.3

url:https://nvd.nist.gov/vuln/detail/cve-2009-3732

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2009-3707

Trust: 0.2

url:https://cwe.mitre.org/data/definitions/264.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

url:http://kb.vmware.com/kb/1015047

Trust: 0.1

url:http://download3.vmware.com/software/wkst/vmware-moviedecoder-6.5.4-246459.exe

Trust: 0.1

url:http://download3.vmware.com/software/esx/esx-2.5.5-191611-upgrade.tar.gz

Trust: 0.1

url:http://kb.vmware.com/kb/1016665

Trust: 0.1

url:http://www.vmware.com/support/esx25/doc/esx-255-200910-patch.html

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3707

Trust: 0.1

url:https://hostupdate.vmware.com/software/vum/offline/release-192-20100228-732240/esx400-201002001.zip

Trust: 0.1

url:http://kb.vmware.com/kb/1018404

Trust: 0.1

url:http://download3.vmware.com/software/vi/esx303-201002203-ug.zip

Trust: 0.1

url:http://www.vmware.com/support/policies/lifecycle/vi/faq.html

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=fus-302

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=ace-254-win

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1140

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2010-1140

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2010-1141

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-2042

Trust: 0.1

url:http://downloads.vmware.com/support/fusion3/doc/releasenotes_fusion_302.html

Trust: 0.1

url:http://downloads.vmware.com/tryvmware/?p=player&lp=default

Trust: 0.1

url:http://kb.vmware.com/kb/1016657

Trust: 0.1

url:http://www.vmware.com/security

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-1565

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=wkst-701-lx

Trust: 0.1

url:http://kb.vmware.com/kb/1055

Trust: 0.1

url:https://hostupdate.vmware.com/software/vum/offline/release-193-20100228-731251/esxi400-201002001.zip

Trust: 0.1

url:http://downloads.vmware.com/support/player30/doc/releasenotes_player301.html

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1142

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2010-1142

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=fus-207

Trust: 0.1

url:http://kb.vmware.com/kb/1017685

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1139

Trust: 0.1

url:http://downloads.vmware.com/download/player/player_reg.html

Trust: 0.1

url:http://downloads.vmware.com/support/fusion2/doc/releasenotes_fusion_207.html

Trust: 0.1

url:http://www.vmware.com/support/policies/security_response.html

Trust: 0.1

url:http://downloads.vmware.com/support/ws65/doc/releasenotes_ws654.html

Trust: 0.1

url:http://downloads.vmware.com/support/ace26/doc/releasenotes_ace261.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2010-1139

Trust: 0.1

url:http://www.vmware.com/support/server2/doc/releasenotes_vmserver202.html

Trust: 0.1

url:http://www.vmware.com/support/policies/eos_vi.html

Trust: 0.1

url:http://kb.vmware.com/kb/1018030

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2042

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3732

Trust: 0.1

url:http://downloads.vmware.com/support/ws7/doc/releasenotes_ws701.html

Trust: 0.1

url:http://www.vmware.com/support/policies/eos.html

Trust: 0.1

url:http://downloads.vmware.com/support/player25/doc/releasenotes_player254.html

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=ace-261-win

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1565

Trust: 0.1

url:http://www.vmware.com/download/server/

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2010-1138

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=wkst-654-win

Trust: 0.1

url:http://www.vupen.com)

Trust: 0.1

url:http://download3.vmware.com/software/vi/esx350-200912401-bg.zip

Trust: 0.1

url:http://tinyurl.com/27mpjo

Trust: 0.1

url:http://www.acrossecurity.com)

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=wkst-701-win

Trust: 0.1

url:http://kb.vmware.com/kb/1014842

Trust: 0.1

url:https://hostupdate.vmware.com/software/vum/offline/release-166-20091202-254879/esx-4.0.0-update01a.zip

Trust: 0.1

url:http://www.acrossecurity.com/advisories.htm

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1138

Trust: 0.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1564

Trust: 0.1

url:http://download3.vmware.com/software/vi/esxe350-201002401-o-sg.zip

Trust: 0.1

url:http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

Trust: 0.1

url:http://downloads.vmware.com/support/ace25/doc/releasenotes_ace254.html

Trust: 0.1

url:http://downloads.vmware.com/download/download.do?downloadgroup=wkst-654-lx

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-1564

Trust: 0.1

url:http://kb.vmware.com/kb/1018403

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1363

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-3733

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-0909

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1361

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-4915

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-4915

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2007-5269

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-3868

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3732

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1142

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-4917

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-2098

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-4916

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1140

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1141

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1447

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-2267

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-0910

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1362

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1137

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1138

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2007-5269

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1447

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1361

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1139

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2010-1143

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-2098

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1807

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-0040

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-2100

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1340

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-4916

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-1244

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3733

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1808

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1807

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1392

Trust: 0.1

url:http://creativecommons.org/licenses/by-sa/2.5

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-2101

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1806

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-0909

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-0040

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-2267

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-3707

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-2101

Trust: 0.1

url:http://security.gentoo.org/

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2007-5671

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-4917

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-2100

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1364

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2007-5503

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-0967

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2007-5671

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1806

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2007-5503

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1340

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2009-4811

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1364

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1363

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-0910

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1392

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-1808

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2008-1362

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2009-1244

Trust: 0.1

url:https://bugs.gentoo.org.

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-0967

Trust: 0.1

sources: CERT/CC: VU#707943 // CNVD: CNVD-2010-0574 // VULMON: CVE-2010-1141 // BID: 1699 // BID: 39392 // JVNDB: JVNDB-2010-001364 // JVNDB: JVNDB-2010-001999 // PACKETSTORM: 88215 // PACKETSTORM: 117012 // CNNVD: CNNVD-201004-160 // NVD: CVE-2010-1141

CREDITS

Alin Rad Pop

Trust: 0.6

sources: CNNVD: CNNVD-201004-160

SOURCES

db:IVDid:7d7c8fb0-463f-11e9-a735-000c29342cb1
db:IVDid:46c824c0-2356-11e6-abef-000c29c66e3d
db:CERT/CCid:VU#707943
db:CNVDid:CNVD-2010-0574
db:VULMONid:CVE-2010-1141
db:BIDid:1699
db:BIDid:39392
db:JVNDBid:JVNDB-2010-001364
db:JVNDBid:JVNDB-2010-001999
db:PACKETSTORMid:88215
db:PACKETSTORMid:117012
db:CNNVDid:CNNVD-201004-160
db:NVDid:CVE-2010-1141

LAST UPDATE DATE

2024-11-24T22:41:06.724000+00:00


SOURCES UPDATE DATE

db:CERT/CCid:VU#707943date:2016-10-13T00:00:00
db:CNVDid:CNVD-2010-0574date:2010-04-13T00:00:00
db:VULMONid:CVE-2010-1141date:2017-09-19T00:00:00
db:BIDid:1699date:2000-09-18T00:00:00
db:BIDid:39392date:2012-10-01T19:10:00
db:JVNDBid:JVNDB-2010-001364date:2010-05-07T00:00:00
db:JVNDBid:JVNDB-2010-001999date:2016-11-09T00:00:00
db:CNNVDid:CNNVD-201004-160date:2010-04-13T00:00:00
db:NVDid:CVE-2010-1141date:2024-11-21T01:13:44.370

SOURCES RELEASE DATE

db:IVDid:7d7c8fb0-463f-11e9-a735-000c29342cb1date:2010-04-13T00:00:00
db:IVDid:46c824c0-2356-11e6-abef-000c29c66e3ddate:2010-04-13T00:00:00
db:CERT/CCid:VU#707943date:2010-08-25T00:00:00
db:CNVDid:CNVD-2010-0574date:2010-04-13T00:00:00
db:VULMONid:CVE-2010-1141date:2010-04-12T00:00:00
db:BIDid:1699date:2000-09-18T00:00:00
db:BIDid:39392date:2010-04-09T00:00:00
db:JVNDBid:JVNDB-2010-001364date:2010-05-07T00:00:00
db:JVNDBid:JVNDB-2010-001999date:2010-09-14T00:00:00
db:PACKETSTORMid:88215date:2010-04-10T03:16:16
db:PACKETSTORMid:117012date:2012-09-30T16:40:15
db:CNNVDid:CNNVD-201004-160date:2010-04-12T00:00:00
db:NVDid:CVE-2010-1141date:2010-04-12T18:30:00.663