Description
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service.
Below is a complete list of vulnerabilities
- Vectors related to file write can be exploited locally;
- Improper input validation can be exploited locally;
- An obsolete version of SSL can be exploited remotely;
- An obsolete version of libxml2 can be exploited remotely.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Related products
- VMware-Workstation
- VMware-Player
- VMware-Server
- VMware-vCenter-Converter-Standalone
- VMware-vSphere-Client
- VMware-Fusion
CVE list
- CVE-2014-3566 warning
- CVE-2014-3568 warning
- CVE-2014-3660 warning
- CVE-2015-1043 warning
- CVE-2015-1044 warning
- CVE-2014-3513 high
- CVE-2014-3567 high
- CVE-2014-8370 high
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!