KLA11037
Arbitrary code execution vulnerability in VMware products

Обновлено: 18/06/2020

Дата обнаружения	14/03/2017
Уровень угрозы	Critical
Описание	An out-of-bounds memory access vulnerability in the DnD (drag-and-drop) function was found in VMware Workstation Pro and VMware Workstation Player. By exploiting this vulnerability malicious users can execute arbitrary code on the operating system running VMware Workstation Pro or VMware Workstation Player.
Пораженные продукты	VMware Workstation Pro 12.x before 12.5.4 VMware Workstation Player 12.x before 12.5.4
Решение	Update to the latest version Download VMware Workstation Pro
Первичный источник обнаружения	VMware Security Advisory
Оказываемое влияние ?	ACE [?]
Связанные продукты	VMware Workstation VMware Player
CVE-IDS	CVE-2017-49017.5Critical
Эксплуатация	Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
	Узнай статистику распространения уязвимостей в твоем регионе

KLA11037Arbitrary code execution vulnerability in VMware products