22 matches found
EUVD-2019-15118
Malware in sbrugna...
EUVD-2020-25222
Malware in sbrugna...
EUVD-2020-25239
Malware in sbrugna...
EUVD-2014-8210
Malware in sbrugna...
CVE-2021-21999
VMware Tools for Windows 11.x.y prior to 11.2.6, VMware Remote Console for Windows 12.x prior to 12.0.1 , VMware App Volumes 2.x prior to 2.18.10 and 4 prior to 2103 contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit this issue by...
CVE-2020-3957
VMware Fusion 11.x before 11.5.5, VMware Remote Console for Mac 11.x and prior and VMware Horizon Client for Mac 5.x and prior contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use TOCTOU issue in the service opener. Successful exploitation of this issue may allow...
CVE-2020-3950
VMware Fusion 11.x before 11.5.2, VMware Remote Console for Mac 11.x and prior before 11.0.1 and Horizon Client for Mac 5.x and prior before 5.4.0 contain a privilege escalation vulnerability due to improper use of setuid binaries. Successful exploitation of this issue may allow attackers with...
CVE-2019-5543
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
Critical VMware Carbon Black Bug Allows Auth Bypass
VMware has fixed an uber-severe bug in its Carbon Black App Control AppC management server: A server whose job is to lock down critical systems and servers so they don’t get changed willy-nilly. AppC also ensures that organizations stay in continuous compliance with regulatory mandates. This is a...
CVE-2021-21999
VMware Tools for Windows 11.x.y prior to 11.2.6, VMware Remote Console for Windows 12.x prior to 12.0.1 , VMware App Volumes 2.x prior to 2.18.10 and 4 prior to 2103 contain a local privilege escalation vulnerability. An attacker with normal access to a virtual machine may exploit this issue by...
CVE-2020-3974
CVE-2020-3974 affects VMware Fusion 11.x (pre-11.5.5), VMware Remote Console for Mac 11.x (pre-11.2.0), and Horizon Client for Mac 5.x (pre-5.4.3). It is a local privilege-escalation due to improper XPC Client validation, allowing a normal-privilege user to gain root access. Exploitation requires...
CVE-2020-3957
VMware Fusion 11.x before 11.5.5, VMware Remote Console for Mac 11.x and prior and VMware Horizon Client for Mac 5.x and prior contain a local privilege escalation vulnerability due to a Time-of-check Time-of-use TOCTOU issue in the service opener. Successful exploitation of this issue may allow...
CVE-2020-3950
VMware Fusion 11.x before 11.5.2, VMware Remote Console for Mac 11.x and prior before 11.0.1 and Horizon Client for Mac 5.x and prior before 5.4.0 contain a privilege escalation vulnerability due to improper use of setuid binaries. Successful exploitation of this issue may allow attackers with...
VMware ESX Multiple Vulnerabilities (VMSA-2010-0007) (remote check)
The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities : - A format string flaw exists in the VMware Remote Console that allows a remote attacker to execute arbitrary code. CVE-2009-3732 - A flaw exists in VMware Tools due to imprope...
[DSecRG-09-053] VMware Remoute Console - format string
Digital Security Research Group DSecRG Advisory DSECRG-09-053 Application: VMware Remoute Console Version: e.x.p build-158248 Vendor URL: http://vmware.com Bugs: Format String Vulnerabilitys Exploits: YES PoC Reported: 07.08.2009 Vendor response: 13.08.2009 Date of Public Advisory: 09.04.2010 CVE...
CVE-2009-3732
Format string vulnerability in vmware-vmrc.exe build 158248 in VMware Remote Console aka VMrc allows remote attackers to execute arbitrary code via unspecified vectors...
Format string
Format string vulnerability in vmware-vmrc.exe build 158248 in VMware Remote Console aka VMrc allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2009-3732
Format string vulnerability in vmware-vmrc.exe build 158248 in VMware Remote Console aka VMrc allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2009-3732
CVE-2009-3732 is a VMware Remote Console (VMrc) format-string vulnerability in vmware-vmrc.exe build 158248 that allows remote code execution via a malicious page or URL. Exploitation requires luring the VMrc user to open a crafted page; code executes with the privileges of the logged-on user. Th...
PT-2010-1297 · Vmware · Vmware Remote Console +1
Name of the Vulnerable Software and Affected Versions: VMware Remote Console versions prior to the version that fixes the issue in build 158248 Description: The issue allows remote attackers to execute arbitrary code via unspecified vectors. This is due to a format string vulnerability in...