Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vmwareVMwareVMSA-2016-0014
HistorySep 13, 2016 - 12:00 a.m.

VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues

2016-09-1300:00:00
www.vmware.com
51

0.001 Low

EPSS

Percentile

49.2%

JSON

a. VMware Workstation heap-based buffer overflow vulnerabilities via Cortado ThinPrint

VMware Workstation contains vulnerabilities that may allow a Windows-based Virtual Machine (VM) to trigger a heap-based buffer overflow. Exploitation of these issues may lead to arbitrary code execution in VMware Workstation running on Windows.

Exploitation is only possible if virtual printing has been enabled in VMware Workstation. This feature is not enabled by default. VMware Knowledge Base article 2146810 documents the procedure for enabling and disabling this feature.

VMware would like to thank E0DB6391795D7F629B5077842E649393 working with Trend Micro’s Zero Day Initiative for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2016-7081 to this issue.

Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

Related

vmware 1
openvas 4
nessus 4
kaspersky 1
prion 8
cvelist 8
nvd 8
cve 8
zdt 2
zdi 1
packetstorm 1
vmware
vmware
VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues
2016-09-13 00:00:00
openvas
openvas
VMware ESXi updates address multiple security issues (VMSA-2016-0014)
2016-09-16 00:00:00
VMware Workstation Multiple Code Execution Vulnerabilities (Feb 2017) - Windows
2017-02-03 00:00:00
VMware Workstation Player Multiple Code Execution Vulnerabilities (Feb 2017) - Windows
2017-02-03 00:00:00
nessus
nessus
VMSA-2016-0014 : VMware ESXi, Workstation, Fusion, & Tools updates address multiple security issues
2016-09-15 00:00:00
VMware Workstation 12.x < 12.5.0 Multiple Vulnerabilities (VMSA-2016-0014)
2016-09-15 00:00:00
VMware Tools 9.x / 10.x < 10.0.9 Multiple Privilege Escalations (VMSA-2016-0014) (Mac OS X)
2016-09-15 00:00:00
kaspersky
kaspersky
KLA10933 Multiple vulnerabilities in VMware Workstation Pro and VMware Workstation Player
2016-12-29 00:00:00
prion
prion
Null pointer dereference
2016-12-29 09:59:00
Null pointer dereference
2016-12-29 09:59:00
Memory corruption
2016-12-29 09:59:00
cvelist
cvelist
CVE-2016-7080
2016-12-29 09:02:00
CVE-2016-7079
2016-12-29 09:02:00
CVE-2016-7082
2016-12-29 09:02:00
nvd
nvd
CVE-2016-7079
2016-12-29 09:59:00
CVE-2016-7080
2016-12-29 09:59:00
CVE-2016-7083
2016-12-29 09:59:00
cve
cve
CVE-2016-7080
2016-12-29 09:59:00
CVE-2016-7079
2016-12-29 09:59:00
CVE-2016-7083
2016-12-29 09:59:00
zdt
zdt
VMware Workstation - vprintproxy.exe TrueType NAME Tables Heap Buffer Overflow
2016-09-19 00:00:00
VMware Workstation - vprintproxy.exe JPEG2000 Images Multiple Memory Corruptions
2016-09-19 00:00:00
zdi
zdi
ThinPrint TPClnt/TPView Heap-based Buffer Overflow Privilege Escalation Vulnerability
2017-06-02 00:00:00
packetstorm
packetstorm
VMWare Player 7.1.3 DLL Hijacking
2018-08-02 00:00:00

0.001 Low

EPSS

Percentile

49.2%

JSON
Related for VMSA-2016-0014
vmware1openvas4nessus4kaspersky1prion8cvelist8nvd8cve8zdt2zdi1packetstorm1