Lucene search
K

176 matches found

Tenable Nessus
Tenable Nessus
added 2016/11/23 12:0 a.m.50 views

VMware Player 12.x < 12.5.2 Drag-and-Drop Feature Arbitrary Code Execution (VMSA-2016-0019) (Linux)

The version of VMware Player installed on the remote Linux host is 12.x prior to 12.5.2. It is, therefore, affected by an arbitrary code execution vulnerability in the drag-and-drop feature due to an out-of-bounds memory access error. An attacker within the guest can exploit this to execute...

8.8CVSS8.5AI score0.00542EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/08/19 12:0 a.m.21 views

VMware Player Guest Privilege Escalation Vulnerability (Aug 2016) - Windows

VMware Player is prone to an important guest privilege escalation vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.2AI score0.0151EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/08/19 12:0 a.m.29 views

VMware Player Guest Privilege Escalation Vulnerability (Aug 2016) - Linux

VMware Player is prone to an important guest privilege escalation vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.5CVSS6.2AI score0.0151EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.32 views

VMware Player 12.1.x < 12.1.1 Shared Folders (HGFS) Guest DLL Hijacking Arbitrary Code Execution (VMSA-2016-0010) (Linux)

The version of VMware Player installed on the remote host is 12.1.x prior to 12.1.1. It is, therefore, affected by an arbitrary code execution vulnerability in the Shared Folders HGFS feature due to improper loading of Dynamic-link library DLL files from insecure paths, including the current...

7.8CVSS7.1AI score0.1802EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.39 views

VMware Player 12.1.x < 12.1.1 Shared Folders (HGFS) Guest DLL Hijacking Arbitrary Code Execution (VMSA-2016-0010)

The version of VMware Player installed on the remote host is 12.1.x prior to 12.1.1. It is, therefore, affected by an arbitrary code execution vulnerability in the Shared Folders HGFS feature due to improper loading of Dynamic-link library DLL files from insecure paths, including the current...

7.8CVSS7.1AI score0.1802EPSS
Exploits5References2
Kaspersky
Kaspersky
added 2016/08/07 12:0 a.m.46 views

KLA10854 Privileges escalation vulnerabilities in VMware products

Untrusted search path vulnerability was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijack. Technical details This vulnerability related to HGFS aka Shared Folders feature. Original advisories...

7.8CVSS6.9AI score0.1802EPSS
Exploits5References5
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.10 views

The vulnerability of VMware Player allows users of the guest operating system to trigger a failure in the maintenance of the host operating system.

The vulnerability of the TPInt.dll library in VMware Player’s hypervisor is related to resource management errors. Exploiting this vulnerability can allow users of the guest operating system to cause failures in the host operating system...

6.1CVSS5.4AI score0.00659EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

The vulnerability of VMware Player allows users of the guest operating system to execute code on the host operating system.

The vulnerability of the TPView.dll library in VMware Player is related to resource management errors. Exploiting this vulnerability allows users of the guest operating system to execute code on the host operating system...

5.8CVSS5.8AI score0.00747EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.11 views

The vulnerability of VMware Player allows users of the guest operating system to trigger a failure in the maintenance of the host operating system.

The vulnerability of the TPView.dll library in VMware Player is related to resource management errors. Exploiting this vulnerability can allow users of the guest operating system to cause failures in the host operating system...

6.1CVSS5.4AI score0.00659EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.10 views

The vulnerability of VMware Player allows users of the guest operating system to execute code on the host operating system.

The vulnerability of the TPInt.dll library in VMware Player’s hypervisor is related to resource management errors. Exploiting this vulnerability allows users of the guest operating system to execute code on the host operating system...

5.8CVSS5.8AI score0.00747EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

The vulnerability of VMware Player allows users of the guest operating system to trigger a failure in the maintenance of the host operating system.

The vulnerability of the TPView.dll library in VMware Player’s hypervisor is related to resource management errors. Exploiting this vulnerability can allow users of the guest operating system to cause failures in the host operating system...

6.1CVSS5.4AI score0.00659EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.7 views

The vulnerability of VMWare Workstation’s software allows a malicious individual to compromise the accessibility of protected information.

The vulnerability in VMware Workstation, VMware Player, VMware Fusion, VMware ESXi, and VMware ESX allows users of these guest operating systems to trigger a service failure VMX process crash by using an invalid port...

3.3CVSS5.5AI score0.00676EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2016/06/03 12:0 a.m.34 views

VMware Player Privilege Escalation vulnerability (Jun 2016) - Windows

VMware Player is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:player";...

10CVSS8.5AI score0.01831EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/05/31 12:0 a.m.7 views

The vulnerability of VMware Workstation and VMware Player allows attackers to exploit their privileges.

The vulnerability of VMware Workstation and VMware Player exists due to incorrect execution of the executable file. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...

10CVSS7.9AI score0.01831EPSS
Exploits0References2Affected Software2
OpenVAS
OpenVAS
added 2016/05/20 12:0 a.m.31 views

VMware Player Multiple Vulnerabilities (May 2016) - Linux

VMware Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:player"; ifdescription...

6.4CVSS4.5AI score0.04189EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2016/05/20 12:0 a.m.31 views

VMware Player Multiple Vulnerabilities (May 2016) - Windows

VMware Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:player"; ifdescription...

6.4CVSS4.5AI score0.04189EPSS
Exploits0References4
OSV
OSV
added 2016/05/18 2:59 p.m.4 views

CVE-2016-2077

VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors...

9.8CVSS5.8AI score0.01831EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/05/18 12:0 a.m.24 views

VMware Player 7.x < 7.1.3 Host Privilege Escalation (VMSA-2016-0005)

The version of VMware Player installed on the remote host is 7.x prior to 7.1.3. It is, therefore, affected by a privilege escalation vulnerability due to an improperly referenced executable. A local attacker can exploit this to gain elevated permissions on the host system. C Tenable Network...

10CVSS8.4AI score0.01831EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/01/14 12:0 a.m.24 views

VMware Player 7.x < 7.1.2 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (Linux)

The version of VMware Player installed on the remote host is version 7.x prior to 7.1.2. It is, therefore, affected by a guest privilege escalation vulnerability in the Shared Folders HGFS feature due to improper validation of user-supplied input. A local attacker can exploit this to corrupt...

6.5CVSS6.4AI score0.0151EPSS
Exploits0References2
CVE
CVE
added 2016/01/09 2:0 a.m.134 views

CVE-2015-6933

CVE-2015-6933 affects VMware Tools HGFS across VMware Workstation (11.x prior to 11.1.2), VMware Player (7.x prior to 7.1.2), VMware Fusion (7.x prior to 7.1.2), and VMware ESXi (5.0–6.0). Root cause: HGFS/shared folders component vulnerability leading to guest OS privilege escalation or guest ke...

6.5CVSS6.1AI score0.0151EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder