#VU46757 Integer overflow


Published: 2020-09-16

Vulnerability identifier: #VU46757

Vulnerability risk: Low

CVSSv3: 3.8 [CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-3990

CWE-ID: CWE-190

Exploitation vector: Network

Exploit availability: No

Vulnerable software: VMware Horizon Client
Client/Desktop applications / Software for system administration
VMware Workstation
Client/Desktop applications / Virtualization software

Vendor: VMware, Inc

Description

The vulnerability allows a remote attacker to gain access to sensitive information on the system.

The vulnerability exists due to integer overflow in Cortado ThinPrint component. A remote authenticated attacker can pass specially crafted data to the application, trigger integer overflow and gain access to sensitive information on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

VMware Horizon Client: 5.0.0, 5.1.0, 5.2.0, 5.3, 5.4, 5.4.1, 5.4.2, 5.4.3

VMware Workstation: 15.0.0, 15.0.1, 15.0.2, 15.0.3, 15.0.4, 15.1.0, 15.5.0, 15.5.1, 15.5.2, 15.5.5, 15.5.6

CPE

External links
https://www.zerodayinitiative.com/advisories/ZDI-20-1178/
https://www.vmware.com/security/advisories/VMSA-2020-0020.html


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability