The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

computer vulnerability CVE-2017-4915 CVE-2017-4916

VMware Workstation: two vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of VMware Workstation.
Impacted products: VMware Workstation.
Severity: 2/4.
Creation date: 19/05/2017.
Revision date: 22/05/2017.
Identifiers: 1142, CERTFR-2017-AVI-161, CVE-2017-4915, CVE-2017-4916, VIGILANCE-VUL-22765, VMSA-2017-0009.

Description of the vulnerability

Several vulnerabilities were announced in VMware Workstation.

A local attacker can make the product load and run arbitrary library, in order to get administration privileges. [severity:2/4; CVE-2017-4915]

A local attacker can force a NULL pointer to be dereferenced, in order to trigger a denial of service. [severity:1/4; CVE-2017-4916]
Complete Vigil@nce bulletin.... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides computers vulnerabilities bulletins. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system. The technology watch team tracks security threats targeting the computer system. The Vigil@nce vulnerability database contains several thousand vulnerabilities.