Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

VMware Workstation VMSA-2017-0008.2 Multiple Security Vulnerabilities (Windows)

Information

Severity

Severity

Medium

Family

Family

General

CVSSv2 Base

CVSSv2 Base

6.9

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

6 years ago

Modified

Modified

5 years ago

Summary

VMware Workstation updates resolve multiple security vulnerabilities (Windows)

Insight

Insight

Multiple flaws are due to multiple heap buffer-overflow vulnerabilities in JPEG2000 and TrueType Font (TTF) parsers in the TPView.dll. Also there exists a DLL loading vulnerability that occurs due to the 'vmware-vmx' process loading DLLs from a path defined in the local environment-variable. Also a security vulnerability and a NULL pointer dereference vulnerability exist in the SVGA driver.

Affected Software

Affected Software

VMware Workstation 12.x versions prior to 12.5.3.

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Update to Workstation 12.5.3.