CVE-2012-5458
VMware Player 4.x - Privilege Escalation via Weak Process Thread Permissions
Title source: llmDescription
VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79924
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/87118
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/56469
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2012-0015.html
Scores
EPSS
0.0009
EPSS Percentile
24.7%
Details
CWE
CWE-264
Status
published
Products (13)
vmware/player
4.0
vmware/player
4.0.0.18997
vmware/player
4.0.1
vmware/player
4.0.2
vmware/player
4.0.3
vmware/player
4.0.4
vmware/workstation
8.0
vmware/workstation
8.0.0.18997
vmware/workstation
8.0.1
vmware/workstation
8.0.1.27038
... and 3 more
Published
Nov 14, 2012
Tracked Since
Feb 18, 2026