CVE-2012-1518

EUVD-2012-1536
VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.3 UNKNOWN
ADJACENT_NETWORK
LOW
AV:A/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
Affected Products (NVD)
VendorProductVersion
vmwareworkstation
8.0
vmwareworkstation
8.0.1
vmwareplayer
4.0
vmwareplayer
4.0.1
vmwareplayer
4.0.2
vmwarefusion
4.0
vmwarefusion
4.0.1
vmwarefusion
4.0.2
vmwarefusion
4.1
vmwarefusion
4.1.1
vmwareesxi
3.5
vmwareesxi
3.5:1
vmwareesxi
4.0
vmwareesxi
4.0:1
vmwareesxi
4.0:2
vmwareesxi
4.0:3
vmwareesxi
4.0:4
vmwareesxi
4.1
vmwareesxi
4.1:1
vmwareesxi
4.1:2
vmwareesxi
5.0
vmwareesx
3.5
vmwareesx
3.5:update1
vmwareesx
3.5:update2
vmwareesx
3.5:update3
vmwareesx
4.0
vmwareesx
4.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/81163
http://secunia.com/advisories/48782
http://www.securityfocus.com/bid/53006
http://www.securitytracker.com/id?1026922
http://www.securitytracker.com/id?1026923
http://www.vmware.com/security/advisories/VMSA-2012-0007.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745
http://osvdb.org/81163
http://secunia.com/advisories/48782
http://www.securityfocus.com/bid/53006
http://www.securitytracker.com/id?1026922
http://www.securitytracker.com/id?1026923
http://www.vmware.com/security/advisories/VMSA-2012-0007.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16745