176 matches found
Multiple VMware Product Host Elevation of Privilege Vulnerabilities
VMware Workstation, VMware Player are virtual machine software.VMware Horizon Client is a device that provides access to VMware Horizon desktops from any location. The vmware-vmx.exe file in multiple VMware products fails to properly set the DACL of a process, allowing a local attacker to exploit...
The vulnerability of VMware Player allows a hacker to trigger a service failure in the guest or host operating system.
The vulnerability of VMware Player exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to trigger a service failure for a 32-bit guest operating system or a 64-bit host operating system using a specially crafted RPC request...
VMware Player 6.x < 6.0.6 RPC Command DoS (VMSA-2015-0004) (Linux)
The version of VMware Player installed on the remote Linux host is 6.x prior to 6.0.6. It is, therefore, affected by a denial of service vulnerability due to improper validation of user-supplied input to a remote procedure call RPC command. An unauthenticated, remote attacker can exploit this, vi...
VMware Player 7.x < 7.1.1 Multiple Vulnerabilities (VMSA-2015-0004)
The version of VMware Player installed on the remote Windows host is 7.x prior to 7.1.1. It is, therefore, affected by multiple vulnerabilities : - An arbitrary code execution vulnerability exists due to a stack-based buffer overflow condition in the JPEG2000 plugin that is triggered when parsing...
Design/Logic Flaw
TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute...
Design/Logic Flaw
TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause ...
CVE-2015-2336
CVE-2015-2336 affects VMware products on Windows: TPView.dll/TPInt.dll memory allocation issues in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4....
VMware Workstation/Player/Fusion 'TPInt.dll' Denial of Service Vulnerability
VMware is a vendor of desktop to datacenter virtualization solutions. A memory allocation error vulnerability exists in VMware Workstation/Player/Fusion 'TPInt.dll', which allows remote attackers on Guest to conduct denial of service attacks...
VMware Workstation/Player/Fusion 'TPInt.dll' Arbitrary Code Execution Vulnerability
VMware is a vendor of desktop to datacenter virtualization solutions. A memory allocation error vulnerability exists in VMware Workstation/Player/Fusion 'TPInt.dll' that allows remote attackers on Guest to execute arbitrary code...
VMware Workstation/Player/Fusion Custom RPC Command Denial of Service Vulnerability
VMware is a vendor of desktop to datacenter virtualization solutions. A security vulnerability exists in VMware Workstation/Player/Fusion that allows a remote attacker on Guest to send specially crafted RPC commands to trigger input validation errors and conduct denial of service attacks...
VMware Player 6.x < 6.0.5 Multiple Vulnerabilities (VMSA-2015-0001) (Windows)
The version of VMware Player installed on the remote host is version 6.x prior to 6.0.5. It is, therefore, affected by the following vulnerabilities : - An unspecified flaw exists that allows a local attacker to escalate privileges or cause a denial of service via an arbitrary write to a file...
CVE-2015-1044
vmware-authd aka the Authorization process in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors...
Authorization
vmware-authd aka the Authorization process in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors...
CVE-2014-8370
VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service arbitrary write to a file by modifying a configuration file...
CVE-2015-1043
Affected products and component: VMware HGFS in Workstation 10.x (before 10.0.5), VMware Player 6.x (before 6.0.5), and VMware Fusion 6.x (before 6.0.5) and 7.x (before 7.0.1). Vulnerability and impact: HGFS input validation flaw that allows guest OS users to cause a guest OS denial of service. T...
KLA10452 Multiple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service. Below is a complete list of vulnerabilities 1. Vectors related to file write can be exploited locally; 2. Improper input validation...
VMware Player < 5.0.4 / 6.0.3 OpenSSL Library Multiple Vulnerabilities (Linux)
The version of VMware Player installed on the remote host is version 5.x prior to 5.0.4 or 6.x prior to 6.0.3. It is, therefore, affected by the following vulnerabilities in the OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to be injected into other...
VMware <= 2.5.1 (Vmware-authd) Remote Denial of Service Exploit
No description provided by source. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Vmware = 2.5.1 build-126130...
VMware Player 1.0.1 Build 19317 Malformed VMX File Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18515/info VMware Player is susceptible to a denial-of-service vulnerability. This issue is due to the application's failure to properly handle excessively long data. This issue allows remote attackers to cause affected...
VMware Player 6.x < 6.0.2 Windows 8.1 Guest Privilege Escalation (VMSA-2014-0005) (Linux)
The installed version of VMware Player 6.x running on the remote Linux host is prior to 6.0.2. It is, therefore, reportedly affected by a privilege escalation vulnerability. A kernel NULL dereference flaw exists in VMware tools on Windows 8.1 guest hosts. An attacker could escalate his privileges...