|
11.29.04
Summary:
Format String flaw in VMWare Workstation 4.5.2 build-8848 (http://www.vmware.com)
Details:
A privilege escalation technique can be used to gain SYSTEM level
access while interacting with the MDaemon tray icon.
Vulnerable Versions:
VMWare Workstation 4.5.2 build-8848
Patches/Workarounds:
The vendor was notified of the issue. There was no response.
Exploits:
Run the following command from the command prompt:
vmware.exe %x%x%x%x
Discovered by Reed Arvin
reedarvin[at]gmail[dot]com
(http://reedarvin.thearvins.com/)
|
