Description
Untrusted search path vulnerability in the installer in VMware Movie Decoder before 9.0 allows local users to gain privileges via a Trojan horse executable file in the installer directory.
References (5)
Core 5
Core References
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2012-0014.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/55802
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79046
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/85957
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2012-10/0069.html
Scores
EPSS
0.0016
EPSS Percentile
36.1%
Details
Status
published
Products (6)
vmware/movie_decoder
6.5.2
vmware/movie_decoder
6.5.3
vmware/movie_decoder
6.5.4
vmware/movie_decoder
6.5.5
vmware/movie_decoder
7.0
vmware/movie_decoder
< 7.1.2
Published
Oct 05, 2012
Tracked Since
Feb 18, 2026