Vulnerability Details CVE-2012-5458
VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 48.4%
CVSS Severity
CVSS v2 Score 8.3
References
- http://osvdb.org/87118
- http://www.securityfocus.com/bid/56469
- http://www.vmware.com/security/advisories/VMSA-2012-0015.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79924
- http://osvdb.org/87118
- http://www.securityfocus.com/bid/56469
- http://www.vmware.com/security/advisories/VMSA-2012-0015.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79924
Products affected by CVE-2012-5458
-
cpe:2.3:a:vmware:player:4.0
-
cpe:2.3:a:vmware:player:4.0.0.18997
-
cpe:2.3:a:vmware:player:4.0.1
-
cpe:2.3:a:vmware:player:4.0.2
-
cpe:2.3:a:vmware:player:4.0.3
-
cpe:2.3:a:vmware:player:4.0.4
-
cpe:2.3:a:vmware:workstation:8.0
-
cpe:2.3:a:vmware:workstation:8.0.0.18997
-
cpe:2.3:a:vmware:workstation:8.0.1
-
cpe:2.3:a:vmware:workstation:8.0.1.27038
-
cpe:2.3:a:vmware:workstation:8.0.2
-
cpe:2.3:a:vmware:workstation:8.0.3
-
cpe:2.3:a:vmware:workstation:8.0.4
-
cpe:2.3:o:microsoft:windows:-
-
cpe:2.3:o:microsoft:windows:1.0
-
cpe:2.3:o:microsoft:windows:2.0
-
cpe:2.3:o:microsoft:windows:2000
-
cpe:2.3:o:microsoft:windows:3.0
-
cpe:2.3:o:microsoft:windows:3.1
-
cpe:2.3:o:microsoft:windows:3.11
-
cpe:2.3:o:microsoft:windows:server_2008
-
cpe:2.3:o:microsoft:windows:vista