Vulnerabilities > Vmware > Workstation > 7.1.4

DATE CVE VULNERABILITY TITLE RISK
2014-08-28 CVE-2014-4200 Permissions, Privileges, and Access Controls vulnerability in VMWare Tools, Vm-Support and Workstation
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, uses 0644 permissions for the vm-support archive, which allows local users to obtain sensitive information by extracting files from this archive.
local
vmware CWE-264
4.7
2014-08-28 CVE-2014-4199 Link Following vulnerability in VMWare Tools, Vm-Support and Workstation
vm-support 0.88 in VMware Tools, as distributed with VMware Workstation through 10.0.3 and other products, allows local users to write to arbitrary files via a symlink attack on a file in /tmp.
local
vmware CWE-59
6.3
2012-09-08 CVE-2012-1666 Unspecified vulnerability in VMWare products
Untrusted search path vulnerability in VMware Tools in VMware Workstation before 8.0.4, VMware Player before 4.0.4, VMware Fusion before 4.1.2, VMware View before 5.1, and VMware ESX 4.1 before U3 and 5.0 before P03 allows local users to gain privileges via a Trojan horse tpfc.dll file in the current working directory.
local
vmware
6.9
2012-06-14 CVE-2012-3288 Improper Input Validation vulnerability in VMWare products
VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware Player 3.x before 3.1.6 and 4.x before 4.0.4, VMware Fusion 4.x before 4.1.3, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow user-assisted remote attackers to execute arbitrary code on the host OS or cause a denial of service (memory corruption) on the host OS via a crafted Checkpoint file.
network
vmware CWE-20
critical
9.3
2011-10-07 CVE-2011-3868 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in VMWare products
Buffer overflow in VMware Workstation 7.x before 7.1.5, VMware Player 3.x before 3.1.5, VMware Fusion 3.1.x before 3.1.3, and VMware AMS allows remote attackers to execute arbitrary code via a crafted UDF filesystem in an ISO image.
network
vmware CWE-119
critical
9.3