Searching
..

Click anywhere to stop

KLA11175
DoS and ACE vulnerabilities in VMware Products

Обновлено: 22/01/2024
Дата обнаружения
04/01/2018
Уровень угрозы
High
Описание

Multiple serious vulnerabilities have been found in VMware Products. Malicious users can exploit these vulnerabilities to cause denial of service and execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. An out-of-bounds read vulnerability in TPView.dll can be exploited remotely to cause denial of service;
  2. A guest access control vulnerability in VMware Tools can be exploited remotely to execute arbitrary code.
Пораженные продукты

VMware Horizon View Client for Windows earlier than 4.7.0
VMware Workstation earlier than 14.1.0
VMware Tools earlier than 10.2.0

Решение

Update to latest versions
Download VMware Fusion
Download VMware Workstation Pro

Первичный источник обнаружения
VMSA-2018-0003
Оказываемое влияние
?
ACE 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Связанные продукты
VMware Workstation
VMware Fusion
VMware Horizon View Client
CVE-IDS
Узнай статистику распространения уязвимостей в твоем регионе