CVE-2011-1681 — Vmware Open-vm-tools vulnerability

6 documents6 sources

Severity

3.3LOWNVD

EPSS

0.1%

top 74.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware Open-vm-tools

Timeline

PublishedApr 10

Latest updateMay 17

Description

vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089.

CVSS vector

AV:L/AC:M/C:P/I:P/A:NExploitability: 3.4 | Impact: 4.9

Affected Packages2 packages

▶Debianvmware/open-vm-tools< 2:8.4.2+2011.08.21-471295-1+3

▶NVDvmware/open-vm-tools8.4.2-261024

🔴Vulnerability Details

GHSA

GHSA-94c3-vwq8-frg9: vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8↗2022-05-17

▶

OSV

CVE-2011-1681: vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8↗2011-04-10

▶

CVEList

CVE-2011-1681: vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8↗2011-04-10

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Visio - 'VISIODWG.dll .DXF' File Handling (MS10-028) (Metasploit)↗2011-06-26

▶

📋Vendor Advisories

Debian

CVE-2011-1681: open-vm-tools - vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4....↗2011

▶