CVE-2011-2146
VMware Security Advisory 2011-0009
Severity Score
3.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1 allows guest OS users to determine the existence of host OS files and directories via unspecified vectors.
mount.vmhgfs en Host Guest File System (HGFS) de VMware en VMware Workstation versiones 7.1.x anteriores a 7.1.4, VMware Player versiones 3.1.x anteriores a 3.1.4, VMware Fusion versiones 3.1.x anteriores a 3.1.3, VMware ESXi versiones 3.5 hasta 4.1, y VMware ESX versiones 3.0.3 hasta 4.1, permite a los usuarios del Sistema Operativo invitado determinar la existencia de archivos y directorios del sistema operativo host por medio de vectores no especificados.
VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-05-17 CVE Reserved
- 2011-06-03 CVE Published
- 2024-08-06 CVE Updated
- 2025-05-05 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/44840 | Third Party Advisory | |
| http://secunia.com/advisories/44904 | Third Party Advisory | |
| http://www.securityfocus.com/bid/48098 | Vdb Entry | |
| http://www.securitytracker.com/id?1025601 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/67813 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.vmware.com/security/advisories/VMSA-2011-0009.html | 2017-08-29 |
| URL | Date | SRC |
|---|---|---|
| https://hermes.opensuse.org/messages/8711677 | 2017-08-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Vmware Search vendor "Vmware" | Workstation Search vendor "Vmware" for product "Workstation" | 7.1.1 Search vendor "Vmware" for product "Workstation" and version "7.1.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Workstation Search vendor "Vmware" for product "Workstation" | 7.1.2 Search vendor "Vmware" for product "Workstation" and version "7.1.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Workstation Search vendor "Vmware" for product "Workstation" | 7.1.3 Search vendor "Vmware" for product "Workstation" and version "7.1.3" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Player Search vendor "Vmware" for product "Player" | 3.1 Search vendor "Vmware" for product "Player" and version "3.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Player Search vendor "Vmware" for product "Player" | 3.1.1 Search vendor "Vmware" for product "Player" and version "3.1.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Player Search vendor "Vmware" for product "Player" | 3.1.2 Search vendor "Vmware" for product "Player" and version "3.1.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Player Search vendor "Vmware" for product "Player" | 3.1.3 Search vendor "Vmware" for product "Player" and version "3.1.3" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Fusion Search vendor "Vmware" for product "Fusion" | 3.1 Search vendor "Vmware" for product "Fusion" and version "3.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Fusion Search vendor "Vmware" for product "Fusion" | 3.1.1 Search vendor "Vmware" for product "Fusion" and version "3.1.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Fusion Search vendor "Vmware" for product "Fusion" | 3.1.2 Search vendor "Vmware" for product "Fusion" and version "3.1.2" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esx Search vendor "Vmware" for product "Esx" | 3.0.3 Search vendor "Vmware" for product "Esx" and version "3.0.3" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esx Search vendor "Vmware" for product "Esx" | 3.5 Search vendor "Vmware" for product "Esx" and version "3.5" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esx Search vendor "Vmware" for product "Esx" | 4.0 Search vendor "Vmware" for product "Esx" and version "4.0" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esx Search vendor "Vmware" for product "Esx" | 4.1 Search vendor "Vmware" for product "Esx" and version "4.1" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esxi Search vendor "Vmware" for product "Esxi" | 3.5 Search vendor "Vmware" for product "Esxi" and version "3.5" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esxi Search vendor "Vmware" for product "Esxi" | 4.0 Search vendor "Vmware" for product "Esxi" and version "4.0" | - |
Affected
| ||||||
| Vmware Search vendor "Vmware" | Esxi Search vendor "Vmware" for product "Esxi" | 4.1 Search vendor "Vmware" for product "Esxi" and version "4.1" | - |
Affected
| ||||||