CVE-2008-0923 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-0923
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-0923

Description: Directory traversal vulnerability in the Shared Folders feature for VMWare ACE 1.0.2 and 2.0.2, Player 1.0.4 and 2.0.2, and Workstation 5.5.4 and 6.0.2 allows guest OS users to read and write arbitrary files on the host OS via a multibyte string that produces a wide character string containing .. (dot dot) sequences, which bypasses the protection mechanism, as demonstrated using a "%c0%2e%c0%2e" string.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/40837 ST 1019493 SREASON http://securityreason.com/securityalert/3700 SAID Secunia Advisory: SA29117 MLIST http://lists.vmware.com/pipermail/security-announce/2008/000008.html MISC http://www.coresecurity.com/?action=item&id=2129 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060457.html CONFIRM http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html http://www.vmware.com/support/player/doc/releasenotes_player.html http://www.vmware.com/support/player2/doc/releasenotes_player2.html http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html http://www.vmware.com/security/advisories/VMSA-2008-0005.html http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004034 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/489739/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/488725/100/0/threaded BID 28276 27944

Return to the previous page.