Multiple VMware Products CVE-2017-4933 Heap Buffer Overflow Vulnerability

Multiple VMware Products are prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it into an insufficiently sized buffer.

Successfully exploiting this vulnerability can allow remote attackers to execute arbitrary code in the context of the application. Failed attempts will likely result in denial-of-service conditions.

The following products are vulnerable:

VMware ESXi 6.5

VMware Workstation 12.x

VMware Fusion 8.x


 

Privacy Statement
Copyright 2010, SecurityFocus