Important VMWare Security Exploit

Posted on February 28, 2008 by Jeremy Clark

vmware.gifCore Security has the full report but if your using VMWare Workstation, Player, or ACE on Windows there is a security exploit in the shared folders feature that allows a traversing of folders not being shared. According to VMWare until a patch is release there is this workaround.

To disable shared folders in the Global settings:

  1. From the VMware product’s menu, choose Edit > Preferences.
  2. In the Workspace tab, under Virtual Machines, deselect the checkbox for Enable all shared folders by default.

To disable shared folders for the individual virtual machine settings:

  1. From the VMware product’s menu, choose VM > Settings.
  2. In the Options tab, select Shared Folders and Disable.

About Jeremy Clark

Small town IT worker with interests in all things technological and technical. Biggest interests are in web development especially the WordPress publishing platform and the community supporting it. Currently developing and maintain the free WordPress theme Techozoic. I'm also always available for hire.
This entry was posted in security and tagged , , , , , . Bookmark the permalink.

One Response to "Important VMWare Security Exploit"

  • By Buck March 3, 2008 - 2:25 am

    It could be worse, at least there’s a workaround. It is still no good though. I’m waiting for MS Hyper-V to come along and eat VMWare’s lunch.