CVE-2015-2336

TPView.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to execute arbitrary code on the host OS via unspecified vectors, a different vulnerability than CVE-2012-0897.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:vmware:fusion:6.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:7.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:fusion:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:7.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:7.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0.1:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0.2:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:10.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:11.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:11.1:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:vmware:horizon_client:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:vmware:horizon_client:3.3:*:*:*:*:*:*:*
cpe:2.3:a:vmware:horizon_view_client:5.4:*:*:*:*:*:*:*
cpe:2.3:a:vmware:horizon_view_client:5.4.1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:27

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/75095 - () http://www.securityfocus.com/bid/75095 -
References () http://www.securitytracker.com/id/1032529 - () http://www.securitytracker.com/id/1032529 -
References () http://www.securitytracker.com/id/1032530 - () http://www.securitytracker.com/id/1032530 -
References () http://www.vmware.com/security/advisories/VMSA-2015-0004.html - Patch, Vendor Advisory () http://www.vmware.com/security/advisories/VMSA-2015-0004.html - Patch, Vendor Advisory

Information

Published : 2015-06-13 14:59

Updated : 2024-11-21 02:27


NVD link : CVE-2015-2336

Mitre link : CVE-2015-2336

CVE.ORG link : CVE-2015-2336


JSON object : View

Products Affected

microsoft

  • windows

vmware

  • horizon_view_client
  • workstation
  • horizon_client
  • player
  • fusion
CWE
CWE-399

Resource Management Errors