CVE-2007-1744 - Vulnerability Details - OpenCVE

Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Windows Xp
Vmware	Workstation

Configuration 1 [-]

AND

cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521
http://secunia.com/advisories/25079
http://www.securityfocus.com/archive/1/467936/30/6690/threaded
http://www.securityfocus.com/archive/1/469011/30/6510/threaded
http://www.securityfocus.com/bid/23721
http://www.securitytracker.com/id?1017980
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554
http://www.vupen.com/english/advisories/2007/1592

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-05-02T19:00:00

Updated: 2024-08-07T13:06:26.235Z

Reserved: 2007-03-28T00:00:00

Link: CVE-2007-1744

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-05-02T19:19:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-1744

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-27T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the \"Backdoor I/O Port\" interface."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1017980", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1017980"}, {"name": "23721", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23721"}, {"name": "ADV-2007-1592", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "20070518 VMSA-2007-0004.1 Updated: Multiple Denial-of-Service issues fixed and directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/469011/30/6510/threaded"}, {"name": "25079", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/25079"}, {"name": "20070427 VMware Workstation Shared Folders Directory Traversal Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554"}, {"name": "20070507 VMSA-2007-0004 Multiple Denial-of-Service issues fixed", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/467936/30/6690/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-1744", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the \"Backdoor I/O Port\" interface."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1017980", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1017980"}, {"name": "23721", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23721"}, {"name": "ADV-2007-1592", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "20070518 VMSA-2007-0004.1 Updated: Multiple Denial-of-Service issues fixed and directory traversal vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/469011/30/6510/threaded"}, {"name": "25079", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/25079"}, {"name": "20070427 VMware Workstation Shared Folders Directory Traversal Vulnerability", "refsource": "IDEFENSE", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521"}, {"name": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554", "refsource": "CONFIRM", "url": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554"}, {"name": "20070507 VMSA-2007-0004 Multiple Denial-of-Service issues fixed", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/467936/30/6690/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T13:06:26.235Z"}, "title": "CVE Program Container", "references": [{"name": "1017980", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1017980"}, {"name": "23721", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/23721"}, {"name": "ADV-2007-1592", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "20070518 VMSA-2007-0004.1 Updated: Multiple Denial-of-Service issues fixed and directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/469011/30/6510/threaded"}, {"name": "25079", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/25079"}, {"name": "20070427 VMware Workstation Shared Folders Directory Traversal Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554"}, {"name": "20070507 VMSA-2007-0004 Multiple Denial-of-Service issues fixed", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/467936/30/6690/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1744", "datePublished": "2007-05-02T19:00:00", "dateReserved": "2007-03-28T00:00:00", "dateUpdated": "2024-08-07T13:06:26.235Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "9B339C33-8896-4896-88FF-88E74FDBC543", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*", "matchCriteriaId": "D38CD779-4FA1-4367-85FA-44049EC567E9", "versionEndIncluding": "5.5.3", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the \"Backdoor I/O Port\" interface."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en la caracter\u00edstica Shared Folders para VMware Workstation anterior 5.5.4, cuando una carpeta es compartida, permite a usuarios sobre el sistema invitado escribir archivos de su elecci\u00f3n sobre sistema host a trav\u00e9s de la interfaz \"Puerto de puerta trasera de I/O\"."}], "evaluatorImpact": "Successful exploitation requires that a folder is shared. Although the \"Shared Folders\" feature is enabled by default, no folders are shared by default.", "id": "CVE-2007-1744", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:N", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 9.2, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-05-02T19:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/25079"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/467936/30/6690/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/469011/30/6510/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/23721"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1017980"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/25079"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/467936/30/6690/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/469011/30/6510/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/23721"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1017980"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/1592"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}