logo
DATABASE RESOURCES PRICING ABOUT US

VMware Workstation 12.x < 12.5.2 Drag-and-Drop Feature Arbitrary Code Execution (VMSA-2016-0019)

Description

The version of VMware Workstation installed on the remote Windows host is 12.x prior to 12.5.2. It is, therefore, affected by an arbitrary code execution vulnerability in the drag-and-drop feature due to an out-of-bounds memory access error. An attacker within the guest can exploit this to execute arbitrary code on the host system.


Related