VMware Tools 'HGFS.sys' Driver Local Privilege Escalation Vulnerability

VMware Tools 'HGFS.sys' Driver Local Privilege Escalation Vulnerability

VMware Tools is prone to a local privilege-escalation vulnerability because the application fails to sufficiently sanitize user-supplied input.

An attacker can exploit this issue to execute arbitrary code with elevated privileges on the guest operating system. Successfully exploiting this issue may compromise the affected application and possibly the underlying computer.

The following VMware products are affected:

VMware Workstation 5 prior to 5.5.6 build 80404 for Microsoft Windows and Linux
VMware Player 1 prior to 1.0.6 build 80404 for Microsoft Windows and Linux
VMware ACE 1 prior to 1.0.5 build 79846
VMware Server prior to 1.0.5 build 80187 for Microsoft Windows and Linux
VMware ESX 3.0.2, 3.0.1, 2.5.5, and 2.5