CVE-2009-3281

EUVD-2009-3264
The vmx86 kernel extension in VMware Fusion before 2.0.6 build 196839 does not use correct file permissions, which allows host OS users to gain privileges on the host OS via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
Affected Products (NVD)
VendorProductVersion
vmwarefusion
𝑥
≤ 2.0.5
vmwarefusion
1.0
vmwarefusion
1.1
vmwarefusion
1.1.1
vmwarefusion
1.1.2
vmwarefusion
1.1.3
vmwarefusion
2.0
vmwarefusion
2.0.1
vmwarefusion
2.0.2
vmwarefusion
2.0.3
vmwarefusion
2.0.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.vmware.com/pipermail/security-announce/2009/000066.html
http://secunia.com/advisories/36928
http://securitytracker.com/id?1022981
http://www.vmware.com/security/advisories/VMSA-2009-0013.html
http://www.vupen.com/english/advisories/2009/2811
http://lists.vmware.com/pipermail/security-announce/2009/000066.html
http://secunia.com/advisories/36928
http://securitytracker.com/id?1022981
http://www.vmware.com/security/advisories/VMSA-2009-0013.html
http://www.vupen.com/english/advisories/2009/2811