VMware ESX / ESXi Tools Folder Incorrect ACL Privilege Escalation (VMSA-2012-0007) (remote check)

High Nessus Plugin ID 89108

Synopsis

The remote VMware ESXi / ESX host is missing a security-related patch.

Description

The remote ESX/ESXi host is missing a security-related patch. It is, therefore, affected by a privilege escalation vulnerability due to the use of an incorrect Access Control List (ACL) for the VMware Tools folder. An adjacent attacker can exploit this to gain elevated privileges on Windows-based guest operating systems.

Solution

Apply the appropriate patch according to the vendor advisory.

See Also

https://www.vmware.com/security/advisories/VMSA-2012-0007.html

Plugin Details

Severity: High

ID: 89108

File Name: vmware_VMSA-2012-0007_remote.nasl

Version: 1.4

Type: remote

Family: Misc.

Published: 2016/03/03

Updated: 2018/08/06

Dependencies: 57396

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 8.3

Temporal Score: 6.9

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:vmware:esx, cpe:/o:vmware:esxi

Required KB Items: Host/VMware/version, Host/VMware/release

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/04/12

Vulnerability Publication Date: 2012/04/12

Exploitable With

CANVAS (White_Phosphorus)

Reference Information

CVE: CVE-2012-1518

BID: 53006

VMSA: 2012-0007