CVE-2003-0631
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
VMware GSX Server 2.5.1 build 4968 and earlier, and Workstation 4.0 and earlier, allows local users to gain root privileges via certain enivronment variables that are used when launching a virtual machine session.
VMware GSX Server 2.5.1 compilación 4968 y anteriores, y Workstation 4.0 y anteriores, permite a usuarios locales ganar privilegios de root mediante ciertas variables de entorno que son usadas cuando se lanza una sesión de máquina virtual.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2003-08-01 CVE Reserved
- 2003-08-02 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://marc.info/?l=bugtraq&m=105899875225268&w=2 | Mailing List | |
| http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=1039 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Vmware Search vendor "Vmware" | Gsx Server Search vendor "Vmware" for product "Gsx Server" | 2.5.1 Search vendor "Vmware" for product "Gsx Server" and version "2.5.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Workstation Search vendor "Vmware" for product "Workstation" | 4.0 Search vendor "Vmware" for product "Workstation" and version "4.0" | - |
Affected
| ||||||