Izdana je revizija sigurnosnog upozorenja izvorne oznake VMSA-2012-0007 objavljenog 12. travnja 2012. godine. Izvorna preporuka upozoravala je na sigurnosni nedostatak otkriven u više VMware proizvoda kojeg je udaljeni napadač mogao iskoristiti za dobivanje većih privilegija.
| Paket: | VMware ESX Server 3.x, VMware ESX Server 4.x, VMware ESXi 3.x, VMware ESXi 4.x, VMware ESXi 5.x, VMware Fusion 3.x, VMware Player 2.x, VMware Player 3.x, VMware Workstation 6.x, VMware Workstation 7.x |
| Operacijski sustavi: | VMware ESX Server 3.x, VMware ESX Server 4.x, VMware ESXi 3.x, VMware ESXi 4.x, VMware ESXi 5.x |
| Kritičnost: | 8.3 |
| Problem: | pogreška u programskoj komponenti |
| Iskorištavanje: | udaljeno |
| Posljedica: | dobivanje većih privilegija |
| Rješenje: | programska zakrpa proizvođača |
| CVE: | CVE-2012-1518 |
| Izvorni ID preporuke: | VMSA-2012-0007.1 |
| Izvor: | VMware |
| Problem: | |
| Propust je posljedica nepravilnosti vezanih uz postavke liste kojom se kontrolira pristup VMware Tools direktoriju. Revizija je izdana zbog izdavanja zakrpe za Workstation 7. |
|
| Posljedica: | |
| Propust je moguće iskoristiti za dobivanje većih pivilegija. |
|
| Rješenje: | |
| Korisnike se potiče na primjenu dostupnih zakrpi. |
|
Izvorni tekst preporuke
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
-----------------------------------------------------------------------
VMware Security Advisory
Advisory ID: VMSA-2012-0007.1
Synopsis: VMware hosted products and ESXi/ESX patches address
privilege escalation
Issue date: 2012-04-12
Updated on: 2012-06-13
CVE numbers: CVE-2012-1518
-----------------------------------------------------------------------
1. Summary
VMware hosted products and ESXi/ESX patches address privilege
escalation.
2. Relevant releases
Workstation 8.0.1 and earlier
Workstation 7.1.5 and earlier
Player 4.0.1 and earlier
Player 3.1.5 and earlier
Fusion 4.1.1 and earlier
ESXi 5.0 without patch ESXi500-201203102-SG
ESXi 4.1 without patch ESXi410-201201402-BG
ESXi 4.0 without patch ESXi400-201203402-BG
ESXi 3.5 without patch ESXe350-201203402-T-BG
ESX 4.1 without patch ESX410-201201401-SG
ESX 4.0 without patch ESX400-201203401-SG
ESX 3.5 without patch ESX350-201203402-BG
3. Problem Description
a. VMware Tools Incorrect Folder Permissions Privilege Escalation
The access control list of the VMware Tools folder is incorrectly
set. Exploitation of this issue may lead to local privilege
escalation on Windows-based Guest Operating Systems.
VMware would like to thank Tavis Ormandy for reporting this issue
to us.
The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the name CVE-2012-1518 to this issue.
Column 4 of the following table lists the action required to
remediate the vulnerability in each release, if a solution is
available.
VMware Product Running Replace with/
Product Version on Apply Patch *
============= ======== ======= =================
vCenter any Windows not affected
Workstation 8.x any 8.0.2 or later
Workstation 7.x any 7.1.6 or later
Player 4.x any 4.0.2 or later
Player 3.x any 3.1.6 or later
Fusion 4.x Mac OS/X 4.1.2 or later
ESXi 5.0 ESXi ESXi500-201203102-SG
ESXi 4.1 ESXi ESXi410-201201402-BG
ESXi 4.0 ESXi ESXi400-201203402-BG
ESXi 3.5 ESXi ESXe350-201203402-T-BG
ESX 4.1 ESX ESX410-201201401-SG
ESX 4.0 ESX ESX400-201203401-SG
ESX 3.5 ESX ESX350-201203402-BG
* Notes on updating VMware Guest Tools:
After the update or patch is applied, VMware Guest Tools must be
updated in any pre-existing Windows-based Guest Operating
System.
Windows-Based Virtual Machines that have moved to Workstation 8,
Player 4 or Fusion 4 from Workstation 7.1.5 or earlier, Player 3.1.5
or earlier, or any version of Fusion 3.x are affected.
4. Solution
Please review the patch/release notes for your product and
version and verify the checksum of your downloaded file.
Workstation 8.0.2
-----------------
http://www.vmware.com/go/downloadworkstation
Release notes:
https://www.vmware.com/support/ws80/doc/releasenotes_workstation_802.html
VMware Workstation for Windows 32-bit and 64-bit with VMware Tools
md5sum: 912df11644fccac439b6fc5f80af5cdb
sha1sum: 67af885d20a30f6074e2511f89ffff4fee321880
VMware Workstation for Linux 32-bit with VMware Tools
md5sum: 121b026836091e6d06b09588afbbb4ed
sha1sum: 94c4d04b7b24ae03ead29f17445d576173d40bb4
VMware Workstation for Linux 64-bit with VMware Tools
md5sum: 0f41ba61117704201cfe99892405e179
sha1sum: 6ad52e8f0768e279639cd41abeda4f9358b40d0f
Workstation 7.1.6
-----------------
http://www.vmware.com/go/downloadworkstation
Release notes:
https://www.vmware.com/support/ws71/doc/releasenotes_ws716.html
VMware Workstation for Windows 32-bit and 64-bit with VMware Tools
md5sum: f7856421babd716dace2f0250ae271f7
sha1sum: 9eaf4b17afec36b8a166bad81be851bd8cfda709
VMware Workstation for Linux 32-bit with VMware Tools
md5sum: 18cc162a88d66a78a0114550517cd42d
sha1sum: 5a1ea9c841a2f45c2e2ed07a30b01c18c85f2133
VMware Workstation for Linux 64-bit with VMware Tools
md5sum: c11e4e162fc128cbfe629c8fb60ea733
sha1sum: 627698ac32d039bcafc117f0fb71d7e666ac0c2e
Player 4.0.2
-------------
http://www.vmware.com/go/downloadplayer
Release notes:
https://www.vmware.com/support/player40/doc/releasenotes_player402.html
VMware Player for Windows 32-bit and 64-bit
md5sum: 8ec9f7cb9556bad9c910a8a9794b3b57
sha1sum: d3613399fc25273ea51ead82ad8bf359f7fda6d1
VMware Player for Linux 32-bit
md5sum: 9fd4bb474a47d5c538e5e806f91e5a40
sha1sum: a3973dd32a1a39644d30532dc4cb4c6216869415
VMware Player for Linux 64-bit
md5sum: 5ba343c2c0392970ecceefa8397ac233
sha1sum: d417eb8538660db4ef07271fcc08152a3494bb58
Player 3.1.6
------------
http://www.vmware.com/go/downloadplayer
Release notes:
https://www.vmware.com/support/player31/doc/releasenotes_player316.html
VMware Player for Windows 32-bit and 64-bit
md5sum: 258ca5ac40efa389b0bb221191dbdd65
sha1sum: 691beccb590b7bc34461f78946d752288f2ef4e7
VMware Player for Linux 32-bit
md5sum: 9ed2d89816523ba030f8877c3fb935b9
sha1sum: a16a91dddb6081be314ef5d84708d37fabdd859c
VMware Player for Linux 64-bit
md5sum: d0715a06775c0f92b9d23e031e4af1c6
sha1sum: 5033c1bfecb309b96399410e614c41452c49e8e8
Fusion 4.1.2
------------
http://www.vmware.com/go/downloadfusion
Release Notes:
http://www.vmware.com/support/fusion4/doc/releasenotes_fusion_412.html
VMware Fusion (for Intel-based Macs)
md5sum: 1a40b9792306cbf4664dd72ac79baecf
sha1sum: e4a9c6d60887ea8ff0fc7e770c4922cc7004b3e9
ESXi and ESX
------------
http://downloads.vmware.com/go/selfsupport-download
ESXi 5.0
--------
update-from-esxi5.0-5.0_update01
md5sum: 55c25bd990e2881462bc5b66fb5f6c39
sha1sum: ecd871bb09b649c6c8c13de82d579d4b7dcadc88
http://kb.vmware.com/kb/2010823
update-from-esxi5.0-5.0_update01 contains ESXi500-201203102-SG
ESXi 4.1
--------
ESXi410-201201001
md5sum: bdf86f10a973346e26c9c2cd4c424e88
sha1sum: cc0b92869a9aae4f5e0e5b81bee109bcd7da780f
http://kb.vmware.com/kb/2009144
ESXi410-201201001 contains ESXi410-201201402-BG
ESXi 4.0
--------
ESXi400-201203001
md5sum: 8054b2e7c9cd024e492ac5c1fb9c1e72
sha1sum: 6150fee114d70603ccae399f42b905a6b1a7f3e1
http://kb.vmware.com/kb/2011768
ESXi400-201203001 contains ESXi400-201203402-BG
ESXi 3.5
--------
ESXe350-201203401-O-SG
md5sum: 44124458684d6d1b957b4e39cbe97d77
sha1sum: 2255311bc6c27e127e075040eb1f98649b5ce8be
http://kb.vmware.com/kb/2009161
ESXe350-201203401-O-SG contains ESXe350-201203402-T-BG
ESX 4.1
-------
ESX410-201201001
md5sum: 16df9acd3e74bcabc2494bc23ad0927f
sha1sum: 1066ae1436e1a75ba3d541ab65296cfb9ab7a5cc
http://kb.vmware.com/kb/2009080
ESX410-201201001 contains ESX410-201201401-SG
ESX 4.0
-------
ESX400-201203001
md5sum: 02b7e883e8b438b83bf5e53a1be71ad3
sha1sum: 34734a8edba225a332731205ee2d6575ad9e1c88
http://kb.vmware.com/kb/2011767
ESX400-201203001 contains ESX400-201203401-SG
ESX 3.5
-------
ESX350-201203402-BG
md5sum: d10cf5d4790a5750cdc6702da29bfdbd
sha1sum: 10f4800205cd2ecf695ff15eb142a0c8ed98665c
http://kb.vmware.com/kb/2009156
5. References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1518
-----------------------------------------------------------------------
6. Change log
2012-04-12 VMSA-2012-0007
Initial security advisory in conjunction with the release of
Fusion 4.1.2 on 2012-04-12.
2012-06-13 VMSA-2012-0007.1
Updated Relevant Releases, Problem Description, and Solution
sections to include information regarding updates for Workstation 7
in conjunction with the release of Workstation 7.1.6 on 2012-06-13.
Removed reference to built-in updater on Fusion 4.1.2 as the latest
version is now available on the web as well.
-----------------------------------------------------------------------
7. Contact
E-mail list for product security notifications and announcements:
http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce
This Security Advisory is posted to the following lists:
* security-announce at lists.vmware.com
* bugtraq at securityfocus.com
* full-disclosure at lists.grok.org.uk
E-mail: security at vmware.com
PGP key at: http://kb.vmware.com/kb/1055
VMware Security Advisories
http://www.vmware.com/security/advisories
VMware security response policy
http://www.vmware.com/support/policies/security_response.html
General support life cycle policy
http://www.vmware.com/support/policies/eos.html
VMware Infrastructure support life cycle policy
http://www.vmware.com/support/policies/eos_vi.html
Copyright 2012 VMware Inc. All rights reserved.
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.8.3 (Build 4028)
Charset: utf-8
wj8DBQFP2VC0DEcm8Vbi9kMRAjZEAJ9qheyDzQQTgAZ+5easUG0iJjQ0owCgiAx9
CqKTM4TG6/fV8JmFrOBVIp8=
=gulD
-----END PGP SIGNATURE-----
_______________________________________________
Security-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.vmware.com/mailman/listinfo/security-announce
Posljednje sigurnosne preporuke