Vigil@nce - VMware Workstation, Player, ESXi: privilege escalation via VMware Tools for Windows 8.1
June 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can use the VMware Tools for Windows 8.1 of
VMware Workstation, Player, or ESXi, in order to escalate his
privileges.
Impacted products: ESXi, VMware Player, VMware vSphere, VMware
vSphere Hypervisor, VMware Workstation
Severity: 2/4
Creation date: 30/05/2014
DESCRIPTION OF THE VULNERABILITY
The VMware Workstation, Player or ESXi product offers VMware Tools.
However, on Microsoft Windows 8.1, a local attacker can use the
VMware Tools, to escalate his privileges in the guest system.
A local attacker can therefore use the VMware Tools for Windows
8.1 of VMware Workstation, Player, or ESXi, in order to escalate
his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN