Important VMWare Security Exploit

By Jeremy Clark
Filed In

security | Tagged

exploit, IT, patch, security, vmware, windows | 36 views

Hello there! If you are new here, you might want to subscribe to the RSS feed or sign up to receive email updates on this topic. Please be sure to rate this article.

Core Security has the full report but if your using VMWare Workstation, Player, or ACE on Windows there is a security exploit in the shared folders feature that allows a traversing of folders not being shared. According to VMWare until a patch is release there is this workaround.

To disable shared folders in the Global settings:

From the VMware product’s menu, choose Edit > Preferences.

In the Workspace tab, under Virtual Machines, deselect the checkbox for Enable all shared folders by default.

To disable shared folders for the individual virtual machine settings:

From the VMware product’s menu, choose VM > Settings.

In the Options tab, select Shared Folders and Disable.

| (No Ratings Yet)

Loading ...

Visitors Also Read:

Other Related Posts:

Vmware’s New Enterprise Product
Vmware’s newest virtualization product Vmware ACE 2 is now in public beta. This product seems like it will blow the competition out of the water. From the short description of the beta on Vmware, it seems that you can create one virutal machine for a...
Vmware Workstation 6 (Vista Compatible)
Vmware announced that it’s newest iteration of it’s staple product Vmware Workstation will be released on Wednesday May 9, 2007. It also seems that it will support Windows Vista as either a host OS or a guest OS. Other important features being added. Quoted from...
VMWare Server 2.0 Beta
Vmware has announced the beta of their virtualization product. I haven’t tried out the newest version yet but I use Vmware Server on an almost daily basis for testing with different operating systems. I have several distros of linux installed as well as different server...

This entry was posted on Thursday, February 28th, 2008 at 3:07 pm and is filed under security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Comment

1

Buck
Mar 3rd 2008 @ 2:25 am

It could be worse, at least there’s a workaround. It is still no good though. I’m waiting for MS Hyper-V to come along and eat VMWare’s lunch.

Reply to this comment