CVE-2016-5330 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2016-5330?

CVE-2016-5330 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-5330?

Check the references section above for vendor advisories and patch information. Affected products include: Vmware Workstation Player, Vmware Workstation Pro, Vmware Esxi, Vmware Fusion, Apple Mac Os X.

Vulnerability Description

Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Vmware	Workstation Player	>= 12.1.0, < 12.1.1
Vmware	Workstation Pro	>= 12.1.0, < 12.1.1
Vmware	Esxi	>= 5.0, <= 6.0
Vmware	Fusion	>= 8.1, < 8.1.1
Apple	Mac Os X	-
Vmware	Tools	>= 9.0.0, <= 10.3.22
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-426

References

http://www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideloadThird Party Advisory
http://www.securityfocus.com/archive/1/539131/100/0/threadedThird Party AdvisoryVDB Entry
http://www.securityfocus.com/bid/92323Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036544Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036545Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036619Third Party AdvisoryVDB Entry
http://www.vmware.com/security/advisories/VMSA-2016-0010.htmlMitigationVendor Advisory
https://securify.nl/advisory/SFY20151201/dll_side_loading_vulnerability_in_vmwarExploitThird Party Advisory
http://www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideloadThird Party Advisory
http://www.securityfocus.com/archive/1/539131/100/0/threadedThird Party AdvisoryVDB Entry
http://www.securityfocus.com/bid/92323Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036544Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036545Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036619Third Party AdvisoryVDB Entry
http://www.vmware.com/security/advisories/VMSA-2016-0010.htmlMitigationVendor Advisory

FAQ

What is CVE-2016-5330?

CVE-2016-5330 is a vulnerability with a CVSS score of 7.8 (HIGH). Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Play...

How severe is CVE-2016-5330?

CVE-2016-5330 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-5330?

Check the references section above for vendor advisories and patch information. Affected products include: Vmware Workstation Player, Vmware Workstation Pro, Vmware Esxi, Vmware Fusion, Apple Mac Os X.