CVE-2012-1518

VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware Tools folder, which allows guest OS users to gain guest OS privileges via unspecified vectors.

Published: Apr 17, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1518
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 8.3
AV:A/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
vmware / workstation	8.0.1	8.0.1.x
vmware / workstation	8.0	8.0.x
vmware / player	4.0.1	4.0.1.x
vmware / player	4.0.2	4.0.2.x
vmware / player	4.0	4.0.x
vmware / fusion	4.0.1	4.0.1.x
vmware / fusion	4.1.1	4.1.1.x
vmware / fusion	4.0	4.0.x
vmware / fusion	4.0.2	4.0.2.x
vmware / fusion	4.1	4.1.x
vmware / esxi	4.1	4.1.x
vmware / esxi	4.0-1	4.0-1.x
vmware / esxi	3.5	3.5.x
vmware / esxi	4.0	4.0.x
vmware / esxi	4.0-3	4.0-3.x
vmware / esxi	5.0	5.0.x
vmware / esxi	4.1-2	4.1-2.x
vmware / esxi	3.5-1	3.5-1.x
vmware / esxi	4.1-1	4.1-1.x
vmware / esxi	4.0-4	4.0-4.x
vmware / esxi	4.0-2	4.0-2.x
vmware / esx	3.5-update2	3.5-update2.x
vmware / esx	4.1	4.1.x
vmware / esx	3.5-update1	3.5-update1.x
vmware / esx	3.5	3.5.x
vmware / esx	3.5-update3	3.5-update3.x
vmware / esx	4.0	4.0.x

Vulnerability Database

289,599

CVE-2012-1518