it.ucsf.edu

Security Update: Privelege Escalation Vulnerability in VMware Tools on Windows 8.1

Status Type

Security Update

Date and Time

Friday, May 30, 2014 - 14:55

Reason

Security Update

Impact

Windows 8.1 VMware Tools users

WHAT HAPPENED?

VMware released a new and revised security advisory to address a privilege escalation issue in VMware Tools on Windows 8.1.

Advanced Users: For a complete description of the security enhancement and affected software refer to VMware Security Advisory VMSA-2014-0005 at http://www.vmware.com/security/advisories/VMSA-2014-0005.html.

 

AFFECTED SYSTEMS:

  • VMware Tools on Window 8.1:

-VMware Workstation 10.x prior to version 10.0.2

-VMware Player 6.x prior to version 6.0.2

-VMware Fusion 6.x prior to version 6.0.3

-ESXi 5.5 without patch ESXi550-201403102-SG

-ESXi 5.1 without patch ESXi510-201404102-SG

-ESXi 5.0 without patch ESXi500-201405102-SG

 

WHAT'S THE PROBLEM?

If the vulnerability is exploited this can allow an unauthorized user to gain elevated access.

 

HOW DO I PROTECT MY COMPUTER?

Update your software in any pre-existing Windows 8.1 Guest Operating System

1.  If IT Field Services or you have other IT support, no action on your part is required.

Note: IT Field Services does support Windows 8.1 at this time, so if you’re an IT Field Services client do not upgrade.

2. If you do not have IT support, updates may be obtained through VMware Security Advisory VMSA-2014-0005 at http://www.vmware.com/security/advisories/VMSA-2014-0005.html.

 

RELATED LINKS