How to Buy
This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote host contains software with a known, local privilege
The installed version of VMware Player 5.x running on Windows is
earlier than 5.0.3. It therefore reportedly contains a vulnerability in
its handling in the LGTOSYNC.SYS driver. This issue could allow a
local, malicious user to escalate privileges on 32-bit Guest Operating
Systems running Windows XP.
Note that by exploiting this issue, a local attacker could elevate his
privileges only on the Guest OS and not on the host.
See also :
Update to VMware Player 5.0.3 or later.
Risk factor :
Medium / CVSS Base Score : 6.9
CVSS Temporal Score : 6.0
Public Exploit Available : false
Nessus Plugin ID: 71231 ()
Bugtraq ID: 64075
CVE ID: CVE-2013-3519
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.