VMware Player 5.x < 5.0.3 LGTOSYNC.SYS Guest Privilege Escalation (VMSA-2013-0014)

Medium Nessus Plugin ID 71231


The remote host contains software with a known, local privilege escalation vulnerability.


The installed version of VMware Player 5.x running on Windows is earlier than 5.0.3. It therefore reportedly contains a vulnerability in its handling in the LGTOSYNC.SYS driver. This issue could allow a local, malicious user to escalate privileges on 32-bit Guest Operating Systems running Windows XP.

Note that by exploiting this issue, a local attacker could elevate his privileges only on the Guest OS and not on the host.


Update to VMware Player 5.0.3 or later.

See Also


Plugin Details

Severity: Medium

ID: 71231

File Name: vmware_player_priv_esc_vmsa_2013_0014.nasl

Version: $Revision: 1.1 $

Type: local

Agent: windows

Family: Windows

Published: 2013/12/05

Modified: 2013/12/05

Dependencies: 31728

Risk Information

Risk Factor: Medium


Base Score: 6.9

Temporal Score: 6

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:vmware:player

Required KB Items: SMB/Registry/Enumerated, VMware/Player/Path, VMware/Player/Version

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2013/11/14

Vulnerability Publication Date: 2013/12/03

Reference Information

CVE: CVE-2013-3519

BID: 64075

OSVDB: 100514

VMSA: 2013-0014