Arbitrary Code Execution via Insecure Library Path in VMware

Arbitrary Code Execution via Insecure Library Path in VMware

CVE-2005-0444 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code.

Learn more about our User Device Pen Test.