This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote host contains software with known, local privilege
The installed version of VMware Workstation 9.x is prior to 9.0.3. It
is, therefore, affected by multiple local privilege escalation
- An issue exists in the handling of shared libraries
that could allow a local, malicious user to escalate
privileges on Linux hosts. (CVE-2013-5972 /
- An issue exists in the handling of the LGTOSYNC.SYS
driver on Windows hosts that could allow a local,
malicious user to escalate privileges on 32-bit Guest
Operating Systems running Windows XP. Note that by
exploiting this issue, a local attacker could elevate
his privileges only on the Guest Operating System and
not on the host. (CVE-2013-3519 / VMSA-2013-0014)
See also :
Update to VMware Workstation 9.0.3 or later.
Risk factor :
High / CVSS Base Score : 7.2
CVSS Temporal Score : 6.3
Public Exploit Available : true
Nessus Plugin ID: 71054 ()
Bugtraq ID: 6373964075
CVE ID: CVE-2013-5972CVE-2013-3519
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.