blob: 17792d3cd15aab3a26a8af80017506d26c7d923f [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200601-04">
<title>VMware Workstation: Vulnerability in NAT networking</title>
VMware guest operating systems can execute arbitrary code with elevated
privileges on the host operating system through a flaw in NAT networking.
<product type="ebuild">VMware</product>
<announced>January 07, 2006</announced>
<revised>May 25, 2006: 02</revised>
<access>remote and local</access>
<package name="app-emulation/vmware-workstation" auto="yes" arch="*">
<unaffected range="ge"></unaffected>
<unaffected range="rge"></unaffected>
<unaffected range="rge"></unaffected>
<vulnerable range="lt"></vulnerable>
VMware Workstation is a powerful virtual machine for developers and
system administrators.
Tim Shelton discovered that vmnet-natd, the host module providing
NAT-style networking for VMware guest operating systems, is unable to
process incorrect 'EPRT' and 'PORT' FTP requests.
<impact type="high">
Malicious guest operating systems using the NAT networking feature or
local VMware Workstation users could exploit this vulnerability to
execute arbitrary code on the host system with elevated privileges.
Disable the NAT service by following the instructions at <uri
b</uri>, Answer ID 2002.
All VMware Workstation users should upgrade to a fixed version:
# emerge --sync
# emerge --ask --oneshot --verbose app-emulation/vmware-workstation</code>
<uri link="">CVE-2005-4459</uri>
<uri link="">VMware Security Response</uri>
<metadata tag="submitter" timestamp="Wed, 04 Jan 2006 10:03:43 +0000">
<metadata tag="bugReady" timestamp="Thu, 05 Jan 2006 15:09:42 +0000">