KLA11110 Multiple vulnerabilities in VMware products

Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to cause denial of service, privelege escalation, cross site scripting and arbitary code execution.

Below is a complete list of vulnerabilities :

1. Out-of-bounds write vulnerability in SVGA device can be exploited to execute arbitrary code;
2. Guest RPC NULL pointer dereference vulnerability can be exploited to cause denial of service;
3. Stored XSS in H5 Client can be exploited to perform cross site scripting.

Technical details

Vulnerabilities 1 and 2 are related to VMware Workstation Pro, VMware Workstation Player, VMware ESXi and VMware Fusion

Vulnerabilities 3 are related to VMware vCenter Server

Original advisories

VMSA-2017-0015

Related products

VMware-Workstation

VMware-Fusion

VMware-vCenter-Server

CVE list

CVE-2017-4924 high

CVE-2017-4925 warning

CVE-2017-4926 warning

Solution

Update to latest versionsDownload VMware Workstation ProDownload VMware vCenter Server

Download VMware Fusion

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

• PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

• XSS/CSS

Cross site scripting. Exploitation of vulnerabilities with this impact can lead to partial interception of information transmitted between user and site.

Affected Products

• Workstation 12 versions earlier than 12.5.7Fusion 8 versions earlier than 8.5.8vCenter Server version 6.5 without patch 6.5 U1vCenter Server version 6.0, 5.5