CVE-2012-3289

CWE-94Code Injection3 documents3 sources
Severity
7.8HIGH
EPSS
0.6%
top 31.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Vmware ESXVmware EsxiVmware Player+1 more
Timeline
PublishedJun 14
Latest updateMay 17

Description

VMware Workstation 8.x before 8.0.4, VMware Player 4.x before 4.0.4, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow remote attackers to cause a denial of service (guest OS crash) via crafted traffic from a remote virtual device.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages4 packages

NVDvmware/esxi4 versions+3
NVDvmware/player4 versions+3
NVDvmware/workstation4 versions+3
NVDvmware/esx3.5, 4.0, 4.1+2

🔴Vulnerability Details

2
GHSA
GHSA-f3vw-hmc2-2j8x: VMware Workstation 82022-05-17
CVEList
CVE-2012-3289: VMware Workstation 82012-06-14
CVE-2012-3289 (HIGH CVSS 7.8) | VMware Workstation 8.x before 8.0.4 | cvebase.io