Vmware Tools vulnerabilities

CVE-2018-6969 [HIGH] CWE-125 CVE-2018-6969: VMware Tools (10.x and prior before 10.3.0) contains an out-of-bounds read vulnerability in HGFS. Su VMware Tools (10.x and prior before 10.3.0) contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow attackers to escalate their privileges on the guest VMs. In order to be able to exploit this issue, file sharing must be enabled.

CVE-2017-4945 [HIGH] vRealize Operations for Horizon, vRealize Operations for Published Applications, Workstation, Horizon View Client and Tools updates resolve multiple security vulnerabilities VMSA-2018-0003: vRealize Operations for Horizon, vRealize Operations for Published Applications, Workstation, Horizon View Client and Tools updates resolve multiple security vulnerabilities a. V4H and V4PA desktop agent privilege escalation vulnerability The V4H and V4PA desktop agents contain a privile

CVE-2015-5191 [MEDIUM] CWE-362 CVE-2015-5191: VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use VMware Tools prior to 10.0.9 contains multiple file system races in libDeployPkg, related to the use of hard-coded paths under /tmp. Successful exploitation of this issue may result in a local privilege escalation. CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CVE-2016-5328 [MEDIUM] VMware product updates address multiple information disclosure issues VMSA-2016-0017: VMware product updates address multiple information disclosure issues a. VMware Tools Information disclosure issue in Mac OS X Virtual Machines An information disclosure vulnerability is present in VMware Tools running on Mac OS X VMs. Successful exploitation of this issue may allow a privileged local user on a system where System Integrity Protection (SIP) is enabled, to obtain kernel m

CVE-2016-7079 [HIGH] VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues VMSA-2016-0014: VMware ESXi, Workstation, Fusion, and Tools updates address multiple security issues a. VMware Workstation heap-based buffer overflow vulnerabilities via Cortado ThinPrint VMware Workstation contains vulnerabilities that may allow a Windows-based Virtual Machine (VM) to trigger a heap-based buffer overflow. Exploitation of these issues may lead to arbitrary code execution in

CVE-2016-5330 [HIGH] VMware product updates address multiple security issues VMSA-2016-0010: VMware product updates address multiple security issues a. DLL hijacking issue in Windows-based VMware Tools A DLL hijacking vulnerability is present in the VMware Tools "Shared Folders" (HGFS) feature running on Microsoft Windows. Exploitation of this issue may lead to arbitrary code execution with the privileges of the victim. In order to exploit this issue, the attacker would need write access to a n

CVE-2015-6933 [MEDIUM] VMware ESXi, Fusion, Player, and Workstation updates address important guest privilege escalation vulnerability VMSA-2016-0001: VMware ESXi, Fusion, Player, and Workstation updates address important guest privilege escalation vulnerability Important Windows-based guest privilege escalation in VMware Tools A kernel memory corruption vulnerability is present in the VMware Tools "Shared Folders" (HGFS) feature running on Microsoft Windows. Successful exploitation of this iss

CVE-2014-3793 [MEDIUM] VMware Workstation, Player, Fusion, and ESXi patches address a guest privilege escalation VMSA-2014-0005: VMware Workstation, Player, Fusion, and ESXi patches address a guest privilege escalation a. Guest privilege escalation in VMware Tools A kernel NULL dereference vulnerability was found in VMware Tools running on Microsoft Windows 8.1. Successful exploitation of this issue could lead to an escalation of privilege in the guest operating system. VMware would like to tha

CVE-2012-3288 [CRITICAL] VMware hosted products and ESXi and ESX patches address security issues VMSA-2012-0011: VMware hosted products and ESXi and ESX patches address security issues Input data is not properly validated when loading Checkpoint files. This may allow an attacker with the ability to load a specially crafted Checkpoint file to execute arbitrary code on the host. CVEs: CVE-2012-3288, CVE-2012-3289 Affected products: ESXi, VMware Fusion, VMware Tools, VMware Workstation

CVE-2012-1516 [CRITICAL] VMware Workstation, Player, ESXi and ESX patches address critical security issues VMSA-2012-0009: VMware Workstation, Player, ESXi and ESX patches address critical security issues a. VMware host memory overwrite vulnerability (data pointers) Due to a flaw in the handler function for RPC commands, it is possible to manipulate data pointers within the VMX process. This vulnerability may allow a guest user to crash the VMX process or potentially execute code on the host.

CVE-2012-1518 [HIGH] VMware hosted products and ESXi/ESX patches address privilege escalation VMSA-2012-0007: VMware hosted products and ESXi/ESX patches address privilege escalation a. VMware Tools Incorrect Folder Permissions Privilege Escalation The access control list of the VMware Tools folder is incorrectly set. Exploitation of this issue may lead to local privilege escalation on Windows-based Guest Operating Systems. VMware would like to thank Tavis Ormandy for reporting this issue to us

CVE-2011-2482 [HIGH] VMware ESXi and ESX address several security issues VMSA-2012-0006: VMware ESXi and ESX address several security issues a. VMware ROM Overwrite Privilege Escalation A flaw in the way port-based I/O is handled allows for modifying Read-Only Memory that belongs to the Virtual DOS Machine. Exploitation of this issue may lead to privilege escalation on Guest Operating Systems that run Windows 2000, Windows XP 32-bit, Windows Server 2003 32-bit or Windows Server 2003 R2 32-bit.

CVE-2010-0405 [HIGH] VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, Workstation, Player, ESXi and ESX address several security issues VMSA-2012-0005: VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, Workstation, Player, ESXi and ESX address several security issues a. VMware Tools Display Driver Privilege Escalation The VMware XPDM and WDDM display drivers contain buffer overflow vulnerabilities and the XPDM display driver does not prop

CVE-2011-3868 [CRITICAL] VMware hosted products address remote code execution vulnerability VMSA-2011-0011: VMware hosted products address remote code execution vulnerability a. UDF file system import remote code execution A buffer overflow vulnerability is present in the way UDF file systems are handled. This issue could allow for code execution if a user installs from a malicious ISO image that was specially crafted by an attacker. VMware would like to thank an anonymous contributor working w

CVE-2009-3080 [HIGH] VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues VMSA-2011-0009: VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues a. VMware vmkernel third party e1000(e) Driver Packet Filter Bypass There is an issue in the e1000(e) Linux driver for Intel PRO/1000 adapters that allows a remote attacker to bypass packet filters. The Common Vulnerabilities and Exposures project (cve.mitre.org) has

CVE-2011-1126 [MEDIUM] VMware vmrun utility local privilege escalation VMSA-2011-0006: VMware vmrun utility local privilege escalation a. VMware Linux based vmrun utility local privilege escalation VMware vmrun is a utility that is used to perform various tasks on virtual machines. The vmrun utility runs on any platform with VIX libraries installed. It is installed in VMware Workstation by default. In non-standard filesystem configurations, an attacker with the ability to place files into a pre

CVE-2010-2059 [MEDIUM] VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. VMSA-2011-0004: VMware ESX/ESXi SLPD denial of service vulnerability and ESX third party updates for Service Console packages bind, pam, and rpm. a. Service Location Protocol daemon DoS This patch fixes a denial-of-service vulnerability in the Service Location Protocol daemon (SLPD). Exploitation of this vulnerability could cause SLPD to consum

CVE-2008-0085 [MEDIUM] Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMSA-2011-0003: Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX VMware Security Advisory VMware Security Advisory Advisory ID: VMware Security Advisory Synopsis: Third party component updates for VMware vCenter Server, vCenter Update Manager,

CVE-2010-4573 [CRITICAL] VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMSA-2010-0020: VMware ESXi 4.1 Update Installer SFCB Authentication Flaw a. ESXi 4.1 Update Installer SFCB Authentication Flaw Under certain conditions, the ESXi 4.1 installer that upgrades an ESXi 3.5 or ESXi 4.0 host to ESXi 4.1 incorrectly handles the SFCB authentication mode. The result is that SFCB authentication could allow login with any username and password combination. An ESXi 4.1 host is affected if a

CVE-2010-4294 [MEDIUM] VMware hosted products and ESX patches resolve multiple security issues VMSA-2010-0018: VMware hosted products and ESX patches resolve multiple security issues a. VMware Workstation, Player and Fusion vmware-mount race condition The way temporary files are handled by the mounting process could result in a race condition. This issue could allow a local user on the host to elevate their privileges. VMware Workstation and Player running on Microsoft Windows are not affected.