CVE-2008-0923

EUVD-2008-0930
Directory traversal vulnerability in the Shared Folders feature for VMWare ACE 1.0.2 and 2.0.2, Player 1.0.4 and 2.0.2, and Workstation 5.5.4 and 6.0.2 allows guest OS users to read and write arbitrary files on the host OS via a multibyte string that produces a wide character string containing .. (dot dot) sequences, which bypasses the protection mechanism, as demonstrated using a "%c0%2e%c0%2e" string.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
vmwareace
1.0
vmwareace
1.0.2
vmwareace
2.0
vmwareace
2.0.1
vmwareace
2.0.2
vmwareplayer
1.0.4
vmwarevmware_player
1.0.1_build_19317:_build_19317
vmwarevmware_player
1.0.2
vmwarevmware_player
1.0.3
vmwarevmware_workstation
6.0.1
vmwarevmware_workstation
6.0.2
vmwareworkstation
4.5.2
vmwareworkstation
5.5.3_build_34685:_build_34685
vmwareworkstation
5.5.4
vmwareworkstation
6.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
vmware-player
dapper
ignored
edgy
ignored
feisty
ignored
gutsy
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
dne
vmware-server
dapper
dne
edgy
dne
feisty
ignored
gutsy
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
dne
Common Weakness Enumeration
References
http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004034
http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060457.html
http://lists.vmware.com/pipermail/security-announce/2008/000008.html
http://secunia.com/advisories/29117
http://securityreason.com/securityalert/3700
http://www.coresecurity.com/?action=item&id=2129
http://www.securityfocus.com/archive/1/488725/100/0/threaded
http://www.securityfocus.com/archive/1/489739/100/0/threaded
http://www.securityfocus.com/bid/27944
http://www.securityfocus.com/bid/28276
http://www.securitytracker.com/id?1019493
http://www.vmware.com/security/advisories/VMSA-2008-0005.html
http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html
http://www.vmware.com/support/player/doc/releasenotes_player.html
http://www.vmware.com/support/player2/doc/releasenotes_player2.html
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
http://www.vupen.com/english/advisories/2008/0679
http://www.vupen.com/english/advisories/2008/0905/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/40837
http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1004034
http://lists.grok.org.uk/pipermail/full-disclosure/2008-February/060457.html
http://lists.vmware.com/pipermail/security-announce/2008/000008.html
http://secunia.com/advisories/29117
http://securityreason.com/securityalert/3700
http://www.coresecurity.com/?action=item&id=2129
http://www.securityfocus.com/archive/1/488725/100/0/threaded
http://www.securityfocus.com/archive/1/489739/100/0/threaded
http://www.securityfocus.com/bid/27944
http://www.securityfocus.com/bid/28276
http://www.securitytracker.com/id?1019493
http://www.vmware.com/security/advisories/VMSA-2008-0005.html
http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html
http://www.vmware.com/support/player/doc/releasenotes_player.html
http://www.vmware.com/support/player2/doc/releasenotes_player2.html
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
http://www.vupen.com/english/advisories/2008/0679
http://www.vupen.com/english/advisories/2008/0905/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/40837