Memory Allocation Vulnerability in VMware Virtual Machine Communication Interface (VMCI) Implementation

Memory Allocation Vulnerability in VMware Virtual Machine Communication Interface (VMCI) Implementation

CVE-2013-1406 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before 5.0.2, VMware View 4.x before 4.6.2 and 5.x before 5.1.2 on Windows, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 does not properly restrict memory allocation by control code, which allows local users to gain privileges via unspecified vectors.

Learn more about our Cis Benchmark Audit For Vmware.