This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
The remote Gentoo host is missing one or more security-related
The remote host is affected by the vulnerability described in GLSA-200601-04
(VMware Workstation: Vulnerability in NAT networking)
Tim Shelton discovered that vmnet-natd, the host module providing
NAT-style networking for VMware guest operating systems, is unable to
process incorrect 'EPRT' and 'PORT' FTP requests.
Malicious guest operating systems using the NAT networking feature or
local VMware Workstation users could exploit this vulnerability to
execute arbitrary code on the host system with elevated privileges.
Disable the NAT service by following the instructions at http://www.vmware.com/support/k
b, Answer ID 2002.
See also :
All VMware Workstation users should upgrade to a fixed version:
# emerge --sync
# emerge --ask --oneshot --verbose app-emulation/vmware-workstation
Risk factor :
Critical / CVSS Base Score : 10.0
Family: Gentoo Local Security Checks
Nessus Plugin ID: 20414 (gentoo_GLSA-200601-04.nasl)
CVE ID: CVE-2005-4459