VMware Patches Bypass Issues

Monday, October 31, 2016 @ 06:10 PM gHale


VMware patched moderate-severity information disclosure vulnerabilities affecting some of the company’s Mac OS X products.

VMware Tools versions 9.x and 10.x have a flaw when running on OS X virtual machines (VMs), said Marco Grassi of Tencent’s KeenLab who found the vulnerabilities. The vulnerability can allow a local user to obtain information to leverage a security mechanism.

RELATED STORIES
VMware Mitigates Horizon View Hole
VMware Fixes Vulnerabilities
VMware Fixes Vulnerabilities
VMware Fixes Critical Flaws

A similar flaw affects version 8.x of VMware Fusion, a virtualization solution that allows users to run multiple guest operating systems on a Mac computer.

“Successful exploitation of this issue may allow a privileged local user on a system where System Integrity Protection (SIP) is enabled, to obtain kernel memory addresses to bypass the kASLR protection mechanism. SIP ends up default enabled in the latest versions of Mac OS X,” according to VMware’s description for the vulnerabilities.

The vulnerability ended up patched in VMware Tools with the release of version 10.1.0 and in VMware Fusion with the release of version 8.5. There are no known workarounds for these issues.



Leave a Reply

You must be logged in to post a comment.