Vulnerabilities > Vmware > Player > 4.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-08-24 | CVE-2013-1662 | Permissions, Privileges, and Access Controls vulnerability in VMWare Player and Workstation vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in a directory in the PATH, related to use of the popen library function. | 6.9 |
2012-11-14 | CVE-2012-5459 | Unspecified vulnerability in VMWare Player and Workstation Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "system folder." Per: http://cwe.mitre.org/data/definitions/426.html "CWE-426: Untrusted Search Path" | 7.9 |
2012-11-14 | CVE-2012-5458 | Permissions, Privileges, and Access Controls vulnerability in VMWare Player and Workstation VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application. | 8.3 |
2012-11-14 | CVE-2012-3569 | USE of Externally-Controlled Format String vulnerability in VMWare OVF Tool, Player and Workstation Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x before 8.0.5, VMware Player 4.x before 4.0.5, and other products, allows user-assisted remote attackers to execute arbitrary code via a crafted OVF file. | 9.3 |