Desktop Virtualization

Virtualization news and reviews

  • Solutions
  • Articles
  • Glossary
  • Contact

Gleb Reys March 18, 2008 1 Comment

Critical security vulnerabilities fixed in VMware's hosted products

Many of you have probably heard about the recent Core Security findings which resulted in a security advisory CORE-2007-0930, Path Traversal vulnerability in VMware's shared folders implementation:

A vulnerability was found in VMware's shared folders mechanism that grants users of a Guest system read and write access to any portion of the Host's file system including the system folder and other security-sensitive files. Exploitation of these vulnerability allows attackers to break out of an isolated Guest system to compromise the underlying Host system that controls it.

Successful exploitation requires that the Shared Folder's feature to be enabled which is the default on VMware products that have the feature AND at least one folder of the Host system is configured for sharing.

[Read more…]

Filed Under: VMware Tagged With: security, security advisory, server, VMware, vmware player, vmware workstation, vulnerability, workstation

See Also

  • Unix Tutorial
  • Basic Unix Commands
  • Advanced Unix Commands
  • SSH port forwarding
  • Unix Tutorial Digest
  • Unix Reference

Advertise Here

If you're interested in advertising your desktop virtualization product on this website, please use the contact form to provide additional information.

Virtualization Software

[APPIP:Error]Error: Invalid Request (file_get_contents) — Please check your Access Key ID and Secret Access Key for errors.
Error: (CURL) RequestThrottled — AWS Access Key ID: AKIAIJB2ICKX5VVPQVJA. You are submitting requests too quickly. Please retry your requests at a slower rate.
[APPIP:Error]Error: Invalid Request (file_get_contents) — Please check your Access Key ID and Secret Access Key for errors.
Error: (CURL) RequestThrottled — AWS Access Key ID: AKIAIJB2ICKX5VVPQVJA. You are submitting requests too quickly. Please retry your requests at a slower rate.

Books you should read

  • Mastering VMware vSphere 4 (Computer/Tech)
  • vSphere 4.0 Quick Start Guide: Shortcuts down the path of Virtualization
  • Virtualizing Microsoft Tier 1 Applications with VMware vSphere 4

Recently Written

  • The End of the Road?
  • Desktop Virtualization in 2016
  • What Are Your Thoughts On VirtualBox 5.0?
  • VDI with vGPUs
  • Login VSI 4.0

Basic Unix Commands

Basic Unix Commands
  • ls command
  • mkdir command
  • man command in unix
  • cd command - change directory
  • uname command

Useful links

  • Solaris Blog
  • Unix Tutorial Unix Tutorials and System Administation Tips

Unix/Linux Reference

Unix Reference
  • check CentOS version
  • check Raspbian version
  • SSH port forwarding
  • unix commands
  • visudo tutorial
  • mtime unix
  • lrwxrwxrwx
  • Unix Tutorial digest

Advanced Unix Commands

Advanced Unix Commands
  • ln command - symlinks
  • tune2fs unix command - filesystem parameters
  • du command - disk usage
  • lsb_release command
  • find unix command

Virtualization Glossary

  • VDI
  • Virtual Machine
  • Sun xVM suite

Copyright © 2019 · Streamline Pro Theme on Genesis Framework · WordPress · Log in