KLA11296
DoS vulnerability in VMware products
Обновлено: 06/11/2019
Дата обнаружения
19/07/2018
Уровень угрозы
Warning
Описание

Multiple vulnerabilities were found in VMware products. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

  1. A NULL pointer dereference vulnerability was found in VMware Workstation and Fusion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally via RPC handler;
  2. Local information disclosure vulnerability can be exploited to gain privileges;
Пораженные продукты
VMware Workstation 14.x earlier than 14.1.2
VMware Fusion 10.x earlier than 10.1.2
Решение

Update to the latest version
Download VMware Fusion
Download Workstation

Первичный источник обнаружения
VMSA-2018-0018
Оказываемое влияние
?
DoS 
[?]

PE 
[?]
Связанные продукты
VMware Workstation
VMware Fusion
CVE-IDS
CVE-2018-69720.0Unknown
CVE-2018-69710.0Unknown