VMware Fusion UDF File Systems Buffer Overflow Vulnerability (Mac OS X) Network Vulnerability

Summary

The host is installed with VMWare Fusion and are prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attacker to execution of arbitrary code. Impact Level: System/Application

Solution

Upgrade to Vmware Fusion version 3.1.3 or later For Upgrades refer, http://www.vmware.com/security/advisories/VMSA-2011-0011.html

Insight

The flaw is due to an error when handling UDF filesystem images. This can be exploited to cause a buffer overflow via a specially crafted ISO image file.

Affected

Vmware Fusion 3.1.0 before 3.1.3

References

http://osvdb.org/76060
http://secunia.com/advisories/46241
http://www.securitytracker.com/id?1026139
http://www.vmware.com/security/advisories/VMSA-2011-0011.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3868
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader 'XFDF' File Buffer Overflow Vulnerability (Mac OS X)
Adobe Flash CS3 SWF Processing Buffer Overflow Vulnerabilities
Adobe Reader/Acrobat Multiple BOF Vulnerabilities - Jun09 (Win)
ChaSen Buffer Overflow Vulnerability (Windows)
avast! Multiple Vulnerabilities - Oct09 (Win)

Take action and discover your vulnerabilities