CVE-2015-3650

2015-07-1017:59:00

CWE-284

[email protected]

web.nvd.nist.gov

cve-2015-3650

vmware

workstation

player

horizon client

windows

dacl

privilege escalation

vprintproxy.exe

nvd

6.5 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.8%

JSON

vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode before 5.4.2 on Windows does not provide a valid DACL pointer during the setup of the vprintproxy.exe process, which allows host OS users to gain host OS privileges by injecting a thread.

CPENameOperatorVersion
vmware:playervmware playereq6.0
vmware:playervmware playereq7.1
vmware:playervmware playereq5.0.2
vmware:playervmware playereq5.0.3
vmware:playervmware playereq5.0.1
vmware:playervmware playereq6.0.6
vmware:playervmware playereq5.0.4
vmware:playervmware playereq5.0
vmware:playervmware playereq6.0.4
vmware:playervmware playereq7.0

CPE	Name	Operator	Version
vmware:player	vmware player	eq	6.0
vmware:player	vmware player	eq	7.1
vmware:player	vmware player	eq	5.0.2
vmware:player	vmware player	eq	5.0.3
vmware:player	vmware player	eq	5.0.1
vmware:player	vmware player	eq	6.0.6
vmware:player	vmware player	eq	5.0.4
vmware:player	vmware player	eq	5.0
vmware:player	vmware player	eq	6.0.4
vmware:player	vmware player	eq	7.0