Vulnerability in Vmware Tools
CVE-2014-4200
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, uses 0644 permissions for the vm-support archive, which allows local users to obtain sensitive information by extracting files from…
EPSS: 0.000 (12.7th percentile) — read the EPSS interpretation.
Affected products
- Vmware Tools
- Vmware Vm-support — versions 0.88
- Vmware Workstation — versions 10.0, 10.0.1, 10.0.2
- N/a — versions n/a
Weakness classification (CWE)
References
- 69410 (vdb-entry, x_refsource_BID)
- 20140826 VMware vm-support multiple vulnerabilities (mailing-list, Exploit, x_refsource_FULLDISC)
- vmware-support-cve20144200-info-disc(95494) (vdb-entry, x_refsource_XF)
- 1030758 (vdb-entry, x_refsource_SECTRACK)