VMware View 4.x < 4.6.2 / 5.x < 5.1.2 VMCI Privilege Escalation (VMSA-2013-0002)
High Nessus Plugin ID 64920
SynopsisThe remote host has a desktop solution that is affected by a privilege escalation vulnerability.
DescriptionThe version of VMware View installed on the remote host is a version prior to 4.6.2 / 5.1.2. It is, therefore, reportedly affected by a privilege escalation vulnerability in the Virtual Machine Communication Interface (VMCI) in the 'VMCI.sys' driver.
By exploiting this issue, a local attacker could elevate their privileges on Windows-based hosts or Windows-based Guest Operating Systems.
Note that systems that have VMCI disabled are also affected by this issue.
SolutionUpgrade to VMware View 4.6.2 / 5.1.2 or later.