Description
vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode before 5.4.2 on Windows does not provide a valid DACL pointer during the setup of the vprintproxy.exe process, which allows host OS users to gain host OS privileges by injecting a thread.
References (4)
Core 4
Core References
Various Sources x_refsource_misc
https://www.nettitude.co.uk/vmware-multiple-products-privilege-escalation/
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2015-0005.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032822
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032823
Scores
EPSS
0.0013
EPSS Percentile
31.9%
Details
CWE
CWE-284
Status
published
Products (25)
vmware/horizon_view_client
5.4
vmware/horizon_view_client
5.4.1
vmware/player
5.0
vmware/player
5.0.1
vmware/player
5.0.2
vmware/player
5.0.3
vmware/player
5.0.4
vmware/player
6.0
vmware/player
6.0.1
vmware/player
6.0.2
... and 15 more
Published
Jul 10, 2015
Tracked Since
Feb 18, 2026