OSVDB ID: 27418 Title: VMware vmware-config.pl SSL Key File Permission Weakness |
Info |
|
|
Dates |
||||
|
|
Description |
VMware ESX Server, VMware GSX Server, VMware Player, VMware Server, and VMware Workstation utilize a flawed vmware-config.pl script that may lead to an unauthorized information disclosure. Under certain circumstances, the vmware-config.pl script may set weak file permissions on the SSL key used by VMware to encrypt console and management communications. If this key file is accessed by unauthorized users, it can be used to attack and decrypt the SSL communications of the affected VMware product, leading to a loss of confidentiality. This issue is not valid for VMware products running under the Windows operating system. |
Classification |
Location:
Local Access Required
Attack Type: Information Disclosure Impact: Loss of Confidentiality Exploit: Exploit Public Disclosure: OSVDB Verified, Vendor Verified |
Solution |
Upgrade to the latest VMware version (ESX 3.0.1, Server 1.0.3, Workstation 6.0), as it has been reported to fix this vulnerability. Additionally, the vendor has released a patch to address this issue, or users may opt to apply the following workaround: Assuming VMware has been installed with the default paths, these two commands (executed as root), will set the proper file permissions on the SSL key files: chmod 400 /etc/vmware/ssl/rui.key chmod 444 /etc/vmware/ssl/rui.crt |
Products |
|
References |
|
Credit |
|
security-assessment.com - Security-Assessment.com