KLA10934
Arbitrary code execution and denial of service vulnerability in VMware products

Обновлено: 03/06/2020
Дата обнаружения
29/12/2016
Уровень угрозы
High
Описание

An unspecified vulnerability was found in VMware Workstation Pro 12.x before 12.5.2, VMware Workstation Player 12.x before 12.5.2 and VMware Fusion, Fusion Pro 8.x before 8.5.2. By exploiting this vulnerability malicious users can execute arbitrary code on the host OS or cause a denial of service. This vulnerability can be exploited remotely via unspecified vectors.


Technical details

This vulnerability was found in the drag-and-drop (DnD) function.

Пораженные продукты

VMware Workstation Pro 12.x before 12.5.2
VMware Workstation Player 12.x before 12.5.2
VMware Fusion and Fusion Pro 8.x before 8.5.2

Решение

Update to the latest version
Get VMware products

Первичный источник обнаружения
VMSA-2016-0019
Оказываемое влияние
?
ACE 
[?]

DoS 
[?]
Связанные продукты
VMware Workstation
VMware Player
VMware Fusion
CVE-IDS
Узнай статистику распространения уязвимостей в твоем регионе