SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   VMware Vendors:   VMware
VMware Workstation/Player/Fusion HGFS Bug Lets Local Guest Users Deny Service
SecurityTracker Alert ID:  1031644
SecurityTracker URL:  http://securitytracker.com/id/1031644
CVE Reference:   CVE-2015-1043   (Links to External Site)
Date:  Jan 28 2015
Impact:   Denial of service via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 6.x, 7.x, 10.x
Description:   A vulnerability was reported in VMware Workstation/Player/Fusion. A local user on the guest system can cause denial of service conditions.

A local user on the guest operating system can trigger an input validation flaw the Host Guest File System (HGFS) to cause denial of service conditions on the guest system.

Peter Kamensky from Digital Security reported this vulnerability.

Impact:   A local user on the guest system can cause denial of service conditions on the guest system.
Solution:   The vendor has issued a fix (6.0.5, 7.0.1, 10.0.5).

The vendor's advisory is available at:

http://www.vmware.com/security/advisories/VMSA-2015-0001.html

Vendor URL:  www.vmware.com/security/advisories/VMSA-2015-0001.html (Links to External Site)
Cause:   Input validation error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC