VMware Workstation and Horizon View Agent updates address a DLL-hijacking issue (CVE-2019-5539)

ID VMSA-2019-0023
Type vmware
Reporter VMware
Modified 2019-12-20T00:00:00


1. Impacted Products
  • VMware Workstation Pro / Player (Workstation)
  • VMware Horizon View Agent (View Agent)
2. Introduction
VMware Workstation and Horizon View Agent contain a DLL-hijacking issue. Patches are available to remediate this vulnerability in affected VMware products.
3. DLL hijacking vulnerability via Cortado Thinprint (CVE-2019-5539)


VMware Workstation and Horizon View Agent contain a DLL hijacking vulnerability due to insecure loading of a DLL by Cortado Thinprint. VMware has evaluated the severity of this issue to be in the moderate severity range with a maximum CVSSv3 base score of 6.3.

Known Attack Vectors:

Successful exploitation of this issue may allow attackers with normal user privileges to escalate their privileges to administrator on a Windows machine where Workstation or View Agent is installed.


To remediate CVE-2019-5539, apply the patches listed in the 'Fixed Version' column of the 'Resolution Matrix' found below.



Additional Documentations:



VMware would like to thank Peleg Hadar of SafeBreach Labs for reporting this issue to us.

Response Matrix: