CVE-2003-1291

Published: Dec 31, 2003Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMware ESX Server environment variables.

Affected (3)

Products: Vmware: Esx

Vmware

1 product

Esx

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Vmware Esx	Version 1.5.2 patch1
Vmware Esx	Version 1.5.2 patch2
Vmware Esx	Version 1.5.2 patch3

References (6)

http://www.osvdb.org/21585

Source: cve@mitre.org

Patch

http://www.vmware.com/download/esx/esx152-patch4.html

Source: cve@mitre.org

Patch

http://www.vmware.com/support/kb/enduser/std_adp.php?p_sid=dsxk%2ABWh&p_lva=&p_faqid=1108

Source: cve@mitre.org

http://www.osvdb.org/21585

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vmware.com/download/esx/esx152-patch4.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vmware.com/support/kb/enduser/std_adp.php?p_sid=dsxk%2ABWh&p_lva=&p_faqid=1108

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.