SB2017052206 - Two vulnerabilities in VMware Workstation Pro
Published: May 22, 2017
Security Bulletin ID
SB2017052206
CSH Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Untrusted search path (CVE-ID: CVE-2017-4915)
CWE-ID: CWE-426 - Untrusted Search Path
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear
The vulnerability allows a local attacker to gain root privileges on a Linux host machine.
The weakness exists due to untrusted search path. A local attacker who is able to change configuration can load library via ALSA sound driver configuration files, gain elevated privileges and execute arbitrary code on the system.
Successful exploitation of the vulnerability may result in full system compromise.
2) Null pointer dereference (CVE-ID: CVE-2017-4916)
CWE-ID: CWE-476 - NULL Pointer Dereference
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear
The vulnerability allows a local attacker to cause DoS condition on the Windows host machine.
The weakness exists due to NULL pointer dereference in the vstor2 driver. An local attacker can cause a Windows host machine to become unresponsive or crash.
Successful exploitation of the vulnerability may result in denial of service.
Remediation
Install update from vendor's website.