CVE-2010-4296

high VMware
CVSS v3 Base Score
7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 80% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: December 6, 2010 (5638 days ago)
Last Modified: April 29, 2026
Vendor: VMware
Source: NVD

Description

vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via vectors involving shared object files.

CWE

CWE-863

Affected Products

vmware workstationvmware playervmware servervmware fusion

References

🔗 lists.vmware.com 🔗 osvdb.org 🔗 secunia.com 🔗 secunia.com 🔗 www.securityfocus.com