Description: A vulnerability has been identified in VMware Workstation, VMware GSX Server and VMware ESX Server on Linux allowing malicious local users to escalate their privileges.
The problem is that VMware uses environment variables in an insecure manner. This could be used by an un-privileged user on the host system to open a root shell.
This affects VMware GSX Server 2.5.1 and earlier on Linux, VMware Workstation 4.0 and earlier on Linux and VMware ESX Server on Linux..
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.