Vulnerability Description
VMware Tools in VMware Workstation 10.x before 10.0.2, VMware Player 6.x before 6.0.2, VMware Fusion 6.x before 6.0.3, and VMware ESXi 5.0 through 5.5, when a Windows 8.1 guest OS is used, allows guest OS users to gain guest OS privileges or cause a denial of service (kernel NULL pointer dereference and guest OS crash) via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Fusion | 6.0 |
| Vmware | Player | 6.0 |
| Vmware | Workstation | 10.0 |
| Vmware | Esxi | 5.0 |
References
- http://packetstormsecurity.com/files/126869/VMware-Security-Advisory-2014-0005.h
- http://secunia.com/advisories/58894
- http://www.securityfocus.com/archive/1/532236/100/0/threaded
- http://www.securitytracker.com/id/1030310
- http://www.securitytracker.com/id/1030311
- http://www.vmware.com/security/advisories/VMSA-2014-0005.html
- http://packetstormsecurity.com/files/126869/VMware-Security-Advisory-2014-0005.h
- http://secunia.com/advisories/58894
- http://www.securityfocus.com/archive/1/532236/100/0/threaded
- http://www.securitytracker.com/id/1030310
- http://www.securitytracker.com/id/1030311
- http://www.vmware.com/security/advisories/VMSA-2014-0005.html
FAQ
What is CVE-2014-3793?
CVE-2014-3793 is a vulnerability with a CVSS score of 5.8 (MEDIUM). VMware Tools in VMware Workstation 10.x before 10.0.2, VMware Player 6.x before 6.0.2, VMware Fusion 6.x before 6.0.3, and VMware ESXi 5.0 through 5.5, when a Windows 8.1 guest OS is used, allows gues...
How severe is CVE-2014-3793?
CVE-2014-3793 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3793?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Fusion, Vmware Player, Vmware Workstation, Vmware Esxi.