Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in open-vm-tools 2009.03.18-154848. Local users can gain privileges via a symlink attack on /tmp files if vmware-user-suid-wrapper is setuid root and the ChmodChownDirectory function is enabled.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VMware open-vm-tools 后置链接漏洞
Vulnerability Description
VMware open-vm-tools是美国威睿(VMware)公司的一组服务和模块。包括内核模块,用于增强运行 Linux 或其他 VMware 支持的类 Unix 来宾操作系统的虚拟机的性能。 VMware open-vm-tools 2009.03.18-154848版本存在安全漏洞,该漏洞源于当vmware-user-suid-wrapper为setuid root,且开启了ChmodChownDirectory功能时,本地用户可以通过符号链接攻击/tmp文件获得权限。
CVSS Information
N/A
Vulnerability Type
N/A