CVE-2011-3868

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.3CRITICAL

EPSS

22.3%

top 4.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Vmware Fusion Vmware Player Vmware Workstation

Timeline

PublishedOct 7

Latest updateMay 14

Description

Buffer overflow in VMware Workstation 7.x before 7.1.5, VMware Player 3.x before 3.1.5, VMware Fusion 3.1.x before 3.1.3, and VMware AMS allows remote attackers to execute arbitrary code via a crafted UDF filesystem in an ISO image.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDvmware/fusion3.1, 3.1.1, 3.1.2+2

▶NVDvmware/player7 versions+6

▶NVDvmware/workstation7 versions+6

Patches

Patch: www.vmware.com ↗Patch: www.vmware.com ↗

🔴Vulnerability Details

GHSA

GHSA-7jrj-rw38-cw85: Buffer overflow in VMware Workstation 7↗2022-05-14

▶

CVEList

CVE-2011-3868: Buffer overflow in VMware Workstation 7↗2011-10-07

▶