Lucene search
Corentin Bayet (@OnlyTheDuck) and Bruno Pujos (@BrunoPujos) from Synacktiv (@Synacktiv)ZDI-20-786HistoryJun 30, 2020 - 12:00 a.m.
VMware Workstation SVGA3D Command Heap Overflow Privilege Escalation Vulnerability
2020-06-3000:00:00
Corentin Bayet (@OnlyTheDuck) and Bruno Pujos (@BrunoPujos) from Synacktiv (@Synacktiv)
www.zerodayinitiative.com
13
EPSS
0.001
Percentile
28.4%
This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the implementation of SVGA3D commands. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the hypervisor.
Related
cve
cve
CVE-2020-3969
2020-06-24 16:15:10
cvelist
cvelist
CVE-2020-3969
2020-06-24 16:00:46
prion
prion
Heap overflow
2020-06-24 16:15:00
nvd
nvd
CVE-2020-3969
2020-06-24 16:15:10
kaspersky
kaspersky
KLA12098 Multiple vulnerabilities in VMware Workstation and Player
2020-06-23 00:00:00
nessus
nessus
