CVE-2021-21987

VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component TTC Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to...

CVE-2021-21989

VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component TTC Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to...

CVE-2021-21988

VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component JPEG2000 Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading t...

CVE-2021-21988

VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component JPEG2000 Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading t...

CVE-2020-3990

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A malicious actor with normal access to a virtual machine may be able to exploit this issue to leak memory from...

Integer overflow

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A malicious actor with normal access to a virtual machine may be able to exploit this issue to leak memory from...

Out-of-bounds

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an out-of-bounds read vulnerability in Cortado ThinPrint component EMF Parser. A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service...

CVE-2020-3990

VMware Workstation (15.x) and Horizon Client for Windows (5.x prior to 5.4.4) are affected by CVE-2020-3990 due to an integer overflow in Cortado ThinPrint. A local attacker with access to a guest VM can exploit this to disclose memory from the TPView process, only if virtual printing is enabled ...

ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. An attacker must first obtain the ability to execute low-privileged code on the guest system in order to exploit this vulnerability. The specific flaw exists within JPEG2000 parsing. The...

CVE-2017-4936

VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1 contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

CVE-2017-4937

VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1 contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

CVE-2017-4912

VMware Workstation 12.x prior to 12.5.3 and Horizon View Client 4.x prior to 4.4.0 contain multiple out-of-bounds read vulnerabilities in TrueType Font TTF parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs...

CVE-2017-4910

VMware Workstation 12.x prior to 12.5.3 and Horizon View Client 4.x prior to 4.4.0 contain multiple out-of-bounds read vulnerabilities in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

ThinPrint TPClnt/TPView Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of ThinPrint. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of print...

Multiple Read/Write Vulnerabilities in VMware Workstation and Horizon View Client (CNVD-2017-05883)

VMware Workstation is a paid and feature-rich set of virtual machine software.VMware Workstation Player is a free open source and simpler virtual machine software.Horizon Client for Windows is used to virtualize desktops and applications. VMware Workstation and Horizon View Client have multiple...

Multiple Read/Write Vulnerabilities in VMware Workstation and Horizon View Client (CNVD-2017-05881)

VMware Workstation is a paid and feature-rich set of virtual machine software.VMware Workstation Player is a free open source and simpler virtual machine software.Horizon Client for Windows is used to virtualize desktops and applications. VMware Workstation and Horizon View Client have multiple...

ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Read Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...