Design/Logic Flaw

2016-08-0801:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

89.0%

JSON

Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

CPENameOperatorVersion
esxige5.0
esxile6.0
fusionge8.1
fusionlt8.1.1
toolsge9.0.0
toolsle10.3.22
workstation_playerge12.1.0
workstation_playerlt12.1.1
workstation_proge12.1.0
workstation_prolt12.1.1

Name	Operator	Version
esxi	ge	5.0
esxi	le	6.0
fusion	ge	8.1
fusion	lt	8.1.1
tools	ge	9.0.0
tools	le	10.3.22
workstation_player	ge	12.1.0
workstation_player	lt	12.1.1
workstation_pro	ge	12.1.0
workstation_pro	lt	12.1.1