← Back

CVE-2013-1662

nvd nist
Published: Aug 24, 2013Modified: Apr 29, 2026

JSON object

Loading...
6.9
Vector
AV:L/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 3.4 / Impact: 10.0
Source: NVD

Description

vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in a directory in the PATH, related to use of the popen library function.

Affected (23)

Vmware
2 products
Workstation
Player
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Vmware
Workstation
Version 8.0.0.18997
Workstation
Version 8.0.1.27038
Workstation
Version 8.0.1
Workstation
Version 8.0.2
Workstation
Version 8.0.3
Workstation
Version 8.0.4
Workstation
Version 8.0.5
Workstation
Version 8.0.6
Workstation
Version 8.0
Workstation
Version 9.0.1
Workstation
Version 9.0.2
Workstation
Version 9.0
Configuration B
8 vulnerable
Vulnerable SoftwareAffected Versions
Vmware
Player
Version 4.0.0.18997
Player
Version 4.0.1
Player
Version 4.0.2
Player
Version 4.0.3
Player
Version 4.0.4
Player
Version 4.0.5
Player
Version 4.0.6
Player
Version 4.0
Configuration C
3 vulnerable
Vulnerable SoftwareAffected Versions
Vmware
Player
Version 5.0.1
Player
Version 5.0.2
Player
Version 5.0

Related CWEs

CWE-264
CWE-264

References (4)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.