CVE-2007-1744 — Path Traversal in Vmware Workstation

3 documents3 sources

Severity

6.3MEDIUMNVD

EPSS

0.1%

top 73.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware Workstation

Timeline

PublishedMay 2

Latest updateMay 1

Description

Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.

CVSS vector

AV:L/AC:M/C:C/I:C/A:NExploitability: 3.4 | Impact: 9.2

Affected Packages1 packages

▶NVDvmware/workstation5.5.3

Patches

Patch: www.vmware.com ↗Patch: www.vmware.com ↗

🔴Vulnerability Details

GHSA

GHSA-hrqp-2pg5-7767: Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5↗2022-05-01

▶

CVEList

CVE-2007-1744: Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5↗2007-05-02

▶