Back to list
VMware Workstation 4.0.1 (for Linux systems) vulnerability
Aug 07 2003 08:46PM
VMware Security Alert (vmware-security-alert vmware com)
-----BEGIN PGP SIGNED MESSAGE-----
The following products have a vulnerability that can allow a non-root user of
the host system to delete files.
VMware Workstation 4.0.1 (for Linux systems) build 5289 and earlier releases
By manipulating symbolic links, a non-root user can delete files in any
Customers running any version of VMware Workstation (for Windows operating
systems) are not subject to this vulnerability.
VMware plans to release a patch that will resolve this problem
shortly. VMware will announce details when available.
- - How to get the patched release
- - How to install a patched release
- - A knowledge base article
* VMware thanks Paul Szabo of the University of Sydney for alerting us
to this vulnerability.
His Web page is at:
This document is clear signed with PGP.
VMware has the PGP public key available at
Some mail programs cause changes to mail messages and content, which may result
in an indication that the PGP signature for this message is not valid. This
may also occur if this message is forwarded through another email distribution
list that changes the "From" field. Please try to save the message into a file
and then running PGP on it.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)
-----END PGP SIGNATURE-----
[ reply ]
Copyright 2010, SecurityFocus