VMware Workstation SVGA3D Command Heap Overflow Privilege Escalation Vulnerability:
An attacker will elevate privileges on VMware Workstation installations that are affected by this vulnerability. To exploit this flaw, an attacker must first be able to execute low-privileged code on the target guest machine.
The basic fault is in the way SVGA3D commands are applied. The problem emerges from a lack of sufficient length validation of user-supplied data before copying it to a heap-based buffer. An attacker will take advantage of this flaw to execute code in the hypervisor’s sense.
We suggest you update your Vmware application following this link.
References:
0 Comments