The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of VMware Player

VMware Player, Workstation: privilege escalation
An attacker on a Windows host system can use VMware Player or Workstation, in order to escalate his privileges...
CERTFR-2016-AVI-175, CVE-2016-2077, VIGILANCE-VUL-19620, VMSA-2016-0005, VMSA-2016-0005.1, VMSA-2016-0005.2, VMSA-2016-0005.3, VMSA-2016-0005.4
VMware ESXi, Player, Workstation: memory corruption via HGFS
An attacker can generate a memory corruption in HGFS of VMware ESXi, Player or Workstation, in order to trigger a denial of service, and possibly to run privileged code on Windows...
CERTFR-2016-AVI-005, CVE-2015-6933, VIGILANCE-VUL-18664, VMSA-2016-0001
VMware Workstation and Player on MS-Windows: privilege escalation via missing ACLs
An attacker can make profit of the miss of ACL in VMware Workstation, in order to escalate his privileges...
CERTFR-2015-AVI-287, CVE-2015-3650, VIGILANCE-VUL-17339, VMSA-2015-0005
VMware ESXi, Player, Workstation: multiple vulnerabilities
An attacker can use several vulnerabilities of VMware ESXi, Player, Workstation...
CERTFR-2015-AVI-044, CVE-2014-8370, CVE-2015-1043, CVE-2015-1044, ESXi500-201405001, ESXi500-201405101-SG, ESXi500-201405102-SG, ESXi510-201404001, ESXi510-201404101-SG, ESXi510-201404102-SG, ESXi550-201501001, ESXi550-201501101-SG, VIGILANCE-VUL-16066, VMSA-2014-0002.2, VMSA-2014-0002.3, VMSA-2015-0001, ZDI-15-031
VMware Workstation, Player, ESXi: privilege escalation via VMware Tools for Windows 8.1
A local attacker can use the VMware Tools for Windows 8.1 of VMware Workstation, Player, or ESXi, in order to escalate his privileges...
CERTFR-2014-AVI-117, CERTFR-2014-AVI-247, CVE-2014-3793, ESXi500-201405001, ESXi500-201405101-SG, ESXi500-201405102-SG, ESXi510-201404001, ESXi510-201404101-SG, ESXi510-201404102-SG, ESXi550-201403101-SG, VIGILANCE-VUL-14823, VMSA-2014-0002, VMSA-2014-0002.2, VMSA-2014-0002.3, VMSA-2014-0004.3, VMSA-2014-0005, VMSA-2015-0001
VMware WorkStation, Player: NULL pointer dereference via vmx86.sys
An attacker can dereference a NULL pointer in vmx86.sys of VMware WorkStation or Player, in order to trigger a denial of service...
CVE-2014-2384, VIGILANCE-VUL-14582
OpenSSL: information disclosure via Heartbeat
An attacker can use the Heartbeat protocol on an application compiled with OpenSSL, in order to obtain sensitive information, such as keys stored in memory...
1669839, 190438, 2076225, 2962393, c04236102, c04267775, c04286049, CA20140413-01, CERTFR-2014-ALE-003, CERTFR-2014-AVI-156, CERTFR-2014-AVI-161, CERTFR-2014-AVI-162, CERTFR-2014-AVI-167, CERTFR-2014-AVI-169, CERTFR-2014-AVI-177, CERTFR-2014-AVI-178, CERTFR-2014-AVI-179, CERTFR-2014-AVI-180, CERTFR-2014-AVI-181, CERTFR-2014-AVI-198, CERTFR-2014-AVI-199, CERTFR-2014-AVI-213, cisco-sa-20140409-heartbleed, CTX140605, CVE-2014-0160, CVE-2014-0346-REJECT, DSA-2896-1, DSA-2896-2, emr_na-c04236102-7, ESA-2014-034, ESA-2014-036, ESA-2014-075, FEDORA-2014-4879, FEDORA-2014-4910, FEDORA-2014-4982, FEDORA-2014-4999, FG-IR-14-011, FreeBSD-SA-14:06.openssl, Heartbleed, HPSBMU02995, HPSBMU03025, HPSBMU03040, ICSA-14-105-03, JSA10623, MDVSA-2014:123, MDVSA-2015:062, NetBSD-SA2014-004, openSUSE-SU-2014:0492-1, openSUSE-SU-2014:0560-1, openSUSE-SU-2014:0719-1, pfSense-SA-14_04.openssl, RHSA-2014:0376-01, RHSA-2014:0377-01, RHSA-2014:0378-01, RHSA-2014:0396-01, RHSA-2014:0416-01, SA40005, SA79, SB10071, SOL15159, SPL-82696, SSA:2014-098-01, SSA-635659, SSRT101565, USN-2165-1, VIGILANCE-VUL-14534, VMSA-2014-0004, VMSA-2014-0004.1, VMSA-2014-0004.2, VMSA-2014-0004.3, VMSA-2014-0004.6, VMSA-2014-0004.7, VU#720951
VMware: denial of service via VMX
A local attacker can use an invalid port, in order to trigger a denial of service on the VMX process of VMware products...
BID-64994, CERTA-2013-AVI-657, CERTFR-2014-AVI-036, CVE-2014-1208, ESX400-201310001, ESX400-201310401-SG, ESX400-201310402-SG, ESX410-201312001, ESX410-201312401-SG, ESX410-201312403-SG, ESXi400-201310001, ESXi400-201310401-SG, ESXi410-201312001, ESXi410-201312401-SG, ESXi500-201310101-SG, ESXi510-201401101-SG, VIGILANCE-VUL-14105, VMSA-2013-0007.1, VMSA-2013-0009.2, VMSA-2013-0009.3, VMSA-2013-0015, VMSA-2014-0001
VMware ESX, Player, Workstation: privilege escalation via lgtosync.sys
A local attacker can corrupt the memory of lgtosync.sys of VMware ESX, Player and Workstation, in order to escalate his privileges...
BID-64075, CERTA-2013-AVI-208, CERTA-2013-AVI-652, CVE-2013-3519, ESX400-201305001, ESX400-201305401-SG, ESX410-201301001, ESX410-201301401-SG, ESX410-201301402-SG, ESX410-201301403-SG, ESX410-201301405-SG, ESXi400-201305001, ESXi400-201305401-SG, ESXi410-201301001, ESXi410-201301401-SG, ESXi410-201301402-SG, ESXi500-201303001, ESXi500-201303101-SG, ESXi500-201303102-SG, VIGILANCE-VUL-13867, VMSA-2013-0001, VMSA-2013-0001.3, VMSA-2013-0003, VMSA-2013-0004, VMSA-2013-0013, VMSA-2013-0014
VMware Player, Workstation: privilege escalation via Linux
A local attacker, on a Linux host system, can escalate his privileges via VMware Player or Workstation...
BID-63739, CERTA-2013-AVI-641, CVE-2013-5972, VIGILANCE-VUL-13783, VMSA-2013-0013
Our database contains other pages. You can request a free trial to read them.