CVE-2012-1508
HIGH severity · CVSS 7.2 · CWE-264
7.2CVSS HIGH
Summary
The XPDM display driver in VMware ESXi 4.0, 4.1, and 5.0; VMware ESX 4.0 and 4.1; and VMware View before 4.6.1 allows guest OS users to gain guest OS privileges or cause a denial of service (NULL pointer dereference) via unspecified vectors.
Impact & exploitability
Attack vectorLocal
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)0%
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://www.vmware.com/security/advisories/VMSA-2012-0004.htmlAdvisory
- http://archives.neohapsis.com/archives/bugtraq/2012-03/0071.html
- http://osvdb.org/80115
- http://secunia.com/advisories/48378
- http://secunia.com/advisories/48379
- http://www.securityfocus.com/bid/52524
- http://www.securitytracker.com/id?1026814
- http://www.securitytracker.com/id?1026818