Tuesday, August 28, 2007 8:12 AM
cmosby
VMWare Workstation vstor-ws60.sys Denial of Service - Advisories - Secunia
VMWare Workstation vstor-ws60.sys Denial of Service
Secunia Advisory:
SA26606
Release Date:
2007-08-28
Critical:
Not critical
Impact:
DoS
Where:
Local system
Solution Status:
Unpatched
Software:
VMware Workstation 6.x
Description:
seppi has reported a vulnerability in VMWare Workstation, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
The vulnerability is caused due to the improper validation of userspace parameters within the "FsSetVolumeInformation" IOCTL handler in vstor-ws60.sys. This can be exploited to crash the vulnerable system by sending a "FsSetVolumeInformation" IOCTL with a subcode equal to "FsSetFileInformation", containing an invalid, small size for the file buffer (1024 bytes under the actual size).
The vulnerability is reported in version 6.0. Other versions may also be affected.
NOTE: A crash is confirmed in the "vstor2-ws60.sys" driver from VMWare Workstation version 6.0 while performing standard "DC2" tests.
Solution:
Restrict access to trusted users only.
Provided and/or discovered by:
seppi
|
Source: VMWare Workstation vstor-ws60.sys Denial of Service - Advisories - Secunia
Filed under: Security and Anti-Virus, Patch Management, Configuration Management