Lucene search
+L

176 matches found

CNVD
CNVD
•added 2015/07/16 12:0 a.m.•6 views

Multiple VMware Product Host Elevation of Privilege Vulnerabilities

VMware Workstation, VMware Player are virtual machine software.VMware Horizon Client is a device that provides access to VMware Horizon desktops from any location. The vmware-vmx.exe file in multiple VMware products fails to properly set the DACL of a process, allowing a local attacker to exploit...

7.2CVSS7.5AI score0.00458EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
•added 2015/07/02 12:0 a.m.•9 views

The vulnerability of VMware Player allows a hacker to trigger a service failure in the guest or host operating system.

The vulnerability of VMware Player exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to trigger a service failure for a 32-bit guest operating system or a 64-bit host operating system using a specially crafted RPC request...

7.8CVSS5.4AI score0.01917EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
•added 2015/06/16 12:0 a.m.•24 views

VMware Player 6.x < 6.0.6 RPC Command DoS (VMSA-2015-0004) (Linux)

The version of VMware Player installed on the remote Linux host is 6.x prior to 6.0.6. It is, therefore, affected by a denial of service vulnerability due to improper validation of user-supplied input to a remote procedure call RPC command. An unauthenticated, remote attacker can exploit this, vi...

7.8CVSS5.5AI score0.01917EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2015/06/16 12:0 a.m.•38 views

VMware Player 7.x < 7.1.1 Multiple Vulnerabilities (VMSA-2015-0004)

The version of VMware Player installed on the remote Windows host is 7.x prior to 7.1.1. It is, therefore, affected by multiple vulnerabilities : - An arbitrary code execution vulnerability exists due to a stack-based buffer overflow condition in the JPEG2000 plugin that is triggered when parsing...

6.8CVSS7.1AI score0.52661EPSS
Exploits4References7
Prion
Prion
•added 2015/06/13 2:59 p.m.•26 views

Design/Logic Flaw

TPInt.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute...

5.8CVSS7.9AI score0.00747EPSS
Exploits0References4Affected Software5
Prion
Prion
•added 2015/06/13 2:59 p.m.•27 views

Design/Logic Flaw

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause ...

6.1CVSS6.5AI score0.00659EPSS
Exploits0References4Affected Software5
CVE
CVE
•added 2015/06/13 2:0 p.m.•68 views

CVE-2015-2336

CVE-2015-2336 affects VMware products on Windows: TPView.dll/TPInt.dll memory allocation issues in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4....

5.8CVSS7.4AI score0.00747EPSS
Exploits0References4Affected Software3
CNVD
CNVD
•added 2015/06/11 12:0 a.m.•23 views

VMware Workstation/Player/Fusion 'TPInt.dll' Denial of Service Vulnerability

VMware is a vendor of desktop to datacenter virtualization solutions. A memory allocation error vulnerability exists in VMware Workstation/Player/Fusion 'TPInt.dll', which allows remote attackers on Guest to conduct denial of service attacks...

6.1CVSS6.8AI score0.00659EPSS
Exploits0References1
CNVD
CNVD
•added 2015/06/11 12:0 a.m.•19 views

VMware Workstation/Player/Fusion 'TPInt.dll' Arbitrary Code Execution Vulnerability

VMware is a vendor of desktop to datacenter virtualization solutions. A memory allocation error vulnerability exists in VMware Workstation/Player/Fusion 'TPInt.dll' that allows remote attackers on Guest to execute arbitrary code...

5.8CVSS7.5AI score0.00747EPSS
Exploits0References1
CNVD
CNVD
•added 2015/06/11 12:0 a.m.•33 views

VMware Workstation/Player/Fusion Custom RPC Command Denial of Service Vulnerability

VMware is a vendor of desktop to datacenter virtualization solutions. A security vulnerability exists in VMware Workstation/Player/Fusion that allows a remote attacker on Guest to send specially crafted RPC commands to trigger input validation errors and conduct denial of service attacks...

7.8CVSS7AI score0.01917EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2015/02/05 12:0 a.m.•34 views

VMware Player 6.x < 6.0.5 Multiple Vulnerabilities (VMSA-2015-0001) (Windows)

The version of VMware Player installed on the remote host is version 6.x prior to 6.0.5. It is, therefore, affected by the following vulnerabilities : - An unspecified flaw exists that allows a local attacker to escalate privileges or cause a denial of service via an arbitrary write to a file...

6.4CVSS5.3AI score0.04189EPSS
Exploits0References5
NVD
NVD
•added 2015/01/29 6:59 p.m.•23 views

CVE-2015-1044

vmware-authd aka the Authorization process in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors...

3.3CVSS6.3AI score0.00825EPSS
Exploits0References8
Prion
Prion
•added 2015/01/29 6:59 p.m.•20 views

Authorization

vmware-authd aka the Authorization process in VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allows attackers to cause a host OS denial of service via unspecified vectors...

3.3CVSS6.8AI score0.00825EPSS
Exploits0References8Affected Software3
ATTACKERKB
ATTACKERKB
•added 2015/01/29 6:59 p.m.•3 views

CVE-2014-8370

VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial of service arbitrary write to a file by modifying a configuration file...

6.4CVSS5.5AI score0.04189EPSS
Exploits0References11
CVE
CVE
•added 2015/01/29 6:0 p.m.•119 views

CVE-2015-1043

Affected products and component: VMware HGFS in Workstation 10.x (before 10.0.5), VMware Player 6.x (before 6.0.5), and VMware Fusion 6.x (before 6.0.5) and 7.x (before 7.0.1). Vulnerability and impact: HGFS input validation flaw that allows guest OS users to cause a guest OS denial of service. T...

3.3CVSS3.6AI score0.00786EPSS
Exploits0References5Affected Software1
Kaspersky
Kaspersky
•added 2015/01/27 12:0 a.m.•67 views

KLA10452 Multiple vulnerabilities in VMware products

Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service. Below is a complete list of vulnerabilities 1. Vectors related to file write can be exploited locally; 2. Improper input validation...

7.1CVSS8.7AI score0.99999EPSS
Exploits8References8
Tenable Nessus
Tenable Nessus
•added 2014/07/10 12:0 a.m.•64 views

VMware Player < 5.0.4 / 6.0.3 OpenSSL Library Multiple Vulnerabilities (Linux)

The version of VMware Player installed on the remote host is version 5.x prior to 5.0.4 or 6.x prior to 6.0.3. It is, therefore, affected by the following vulnerabilities in the OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to be injected into other...

7.4CVSS7.4AI score0.95326EPSS
Exploits9References10
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•14 views

VMware <= 2.5.1 (Vmware-authd) Remote Denial of Service Exploit

No description provided by source. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Vmware = 2.5.1 build-126130...

7.1AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•17 views

VMware Player 1.0.1 Build 19317 Malformed VMX File Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18515/info VMware Player is susceptible to a denial-of-service vulnerability. This issue is due to the application's failure to properly handle excessively long data. This issue allows remote attackers to cause affected...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
•added 2014/06/02 12:0 a.m.•34 views

VMware Player 6.x < 6.0.2 Windows 8.1 Guest Privilege Escalation (VMSA-2014-0005) (Linux)

The installed version of VMware Player 6.x running on the remote Linux host is prior to 6.0.2. It is, therefore, reportedly affected by a privilege escalation vulnerability. A kernel NULL dereference flaw exists in VMware tools on Windows 8.1 guest hosts. An attacker could escalate his privileges...

5.8CVSS5.6AI score0.01147EPSS
Exploits0References2
Rows per page
Query Builder