CVE-2013-1662

CVE Database · CVE-2013-1662

CVE-2013-1662

· N/AModified

CVSS v3.1

N/A

EPSS

4.64%

Published

Aug 23, 2013

Modified

Apr 28, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBVMware - Setuid VMware-mount Popen lsb_release Privilege Escalation Exploit-DBVMware - Setuid VMware-mount Unsafe popen(3) (Metasploit)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in a directory in the PATH, related to use of the popen library function.

Weaknesses (CWE)

CWE-264

Affected Products (23)

vmware · workstationvulnerable

References (4)

http://blog.cmpxchg8b.com/2013/08/security-debianisms.html

http://www.vmware.com/security/advisories/VMSA-2013-0010.html

Vendor Advisory

http://blog.cmpxchg8b.com/2013/08/security-debianisms.html

http://www.vmware.com/security/advisories/VMSA-2013-0010.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs