| VID |
23274 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of VMware Workstation installed on the remote Windows host is 12.x prior to 12.5.8. It is, therefore, affected by the following vulnerabilities:
- VMware Workstation and Fusion contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host.
- VMware Workstation and Horizon View Client contain an out-of-bounds write and read vulnerability in JPEG2000 parser in the TPView.dll. this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstation. (CVE-2017-4935, CVE-2017-4936, CVE-2017-4937)
- VMware Workstation and Fusion contain a guest RPC NULL pointer dereference vulnerability. Successful exploitation of this issue may allow attackers with normal user privileges to crash their VMs. (CVE-2017-4938)
- Workstation installer contains a DLL hijacking issue that exists due to some DLL files loaded by the application improperly. This issue may allow an attacker to load a DLL file of the attacker's choosing that could execute arbitrary code. (CVE-2017-4939)
* References :
https://www.vmware.com/security/advisories/VMSA-2017-0018.html |
| Recommendation |
Upgrade to the latest versions of the affected applications(VMware Workstation 12.5.8 or later) available from the VMware Download Web site at http://www.vmware.com/download/ |
| Related URL |
CVE-2017-4934,CVE-2017-4935,CVE-2017-4936,CVE-2017-4937,CVE-2017-4938,CVE-2017-4939 (CVE) |
| Related URL |
101903,101892,101887,101890 (SecurityFocus) |
| Related URL |
(ISS) |
|
