SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2011-1681

vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 3.3
Exploit Score: 3.4
Impact Score: 4.9

CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: NONE

Reference:

SECUNIA-44904

http://openwall.com/lists/oss-security/2011/03/04/11

http://openwall.com/lists/oss-security/2011/03/04/9

http://openwall.com/lists/oss-security/2011/03/04/12

http://openwall.com/lists/oss-security/2011/03/05/7

http://openwall.com/lists/oss-security/2011/03/07/9

http://openwall.com/lists/oss-security/2011/03/14/7

http://openwall.com/lists/oss-security/2011/03/15/6

http://openwall.com/lists/oss-security/2011/03/22/4

http://openwall.com/lists/oss-security/2011/03/31/3

http://openwall.com/lists/oss-security/2011/04/01/2

https://bugzilla.redhat.com/show_bug.cgi?id=688980

openSUSE-SU-2011:0617

vmware-vmwarehgfsmounter-sec-bypass(66699)


30430



423868



247862



909



194603



282