CVE-2010-3277

Published: Sep 28, 2010Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 renders an index.htm file if present in the installation directory, which might allow local users to trigger unintended interpretation of web script or HTML by creating this file.

Affected (8)

Products: Vmware: Workstation, Player

2 products

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Vmware Workstation	Version 7.0.1
Vmware Workstation	Version 7.0
Vmware Workstation	Version 7.1.1
Vmware Workstation	Version 7.1

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Vmware Player	Version 3.0.1
Vmware Player	Version 3.0
Vmware Player	Version 3.1.1
Vmware Player	Version 3.1

Related CWEs

References (10)

http://lists.vmware.com/pipermail/security-announce/2010/000105.html

Source: cve@mitre.org

http://secunia.com/advisories/41574

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1024481

Source: cve@mitre.org

http://www.vmware.com/security/advisories/VMSA-2010-0014.html

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2010/2491

Source: cve@mitre.org

Vendor Advisory

http://lists.vmware.com/pipermail/security-announce/2010/000105.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/41574

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1024481

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vmware.com/security/advisories/VMSA-2010-0014.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2010/2491

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.