CVE-2012-5459
VMware Workstation <8.0.5 & VMware Player <4.0.5 - Privilege Escala...
Title source: llmDescription
Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "system folder."
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/56470
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/87119
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2012-0015.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79923
Scores
EPSS
0.0014
EPSS Percentile
32.9%
Details
Status
published
Products (13)
vmware/player
4.0
vmware/player
4.0.0.18997
vmware/player
4.0.1
vmware/player
4.0.2
vmware/player
4.0.3
vmware/player
4.0.4
vmware/workstation
8.0
vmware/workstation
8.0.0.18997
vmware/workstation
8.0.1
vmware/workstation
8.0.1.27038
... and 3 more
Published
Nov 14, 2012
Tracked Since
Feb 18, 2026