CVE-2015-6933
First published: Sat Jan 09 2016(Updated: )
The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x before 11.1.2, VMware Player 7.x before 7.1.2, VMware Fusion 7.x before 7.1.2, and VMware ESXi 5.0 through 6.0 allows Windows guest OS users to gain guest OS privileges or cause a denial of service (guest OS kernel memory corruption) via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Player | =7.0 | |
| VMware Player | =7.1 | |
| VMware Player | =7.1.1 | |
| VMware Workstation | =11.0 | |
| VMware Workstation | =11.1 | |
| VMware Workstation | =11.1.1 | |
| VMware ESXi | =5.0 | |
| VMware ESXi | =5.0-1 | |
| VMware ESXi | =5.0-2 | |
| VMware ESXi | =5.1 | |
| VMware ESXi | =5.1-1 | |
| VMware ESXi | =5.5 | |
| VMware ESXi | =6.0 | |
| VMware Fusion Pro | =7.0 | |
| VMware Fusion Pro | =7.1 | |
| VMware Fusion Pro | =7.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-6933?
CVE-2015-6933 is rated as critical due to its potential to allow unauthorized privilege escalation and service disruption in guest operating systems.
How do I fix CVE-2015-6933?
To fix CVE-2015-6933, update to VMware Workstation 11.1.2, VMware Player 7.1.2, VMware Fusion 7.1.2, or a later version.
Which VMware products are affected by CVE-2015-6933?
CVE-2015-6933 affects VMware Workstation 11.x prior to 11.1.2, VMware Player 7.x prior to 7.1.2, VMware Fusion 7.x prior to 7.1.2, and certain versions of VMware ESXi.
What are the potential impacts of CVE-2015-6933?
The potential impacts of CVE-2015-6933 include privilege escalation for Windows guest OS users and potential denial of service in the guest OS kernel.
Is there a workaround for CVE-2015-6933?
While the best approach is to update to the latest versions, a potential workaround involves disabling Shared Folders if an immediate upgrade is not possible.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/references
- agent/remedy
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/vmware
- canonical/vmware player
- version/vmware player/7.0
- version/vmware player/7.1
- version/vmware player/7.1.1
- canonical/vmware workstation
- version/vmware workstation/11.0
- version/vmware workstation/11.1
- version/vmware workstation/11.1.1
- canonical/vmware esxi
- version/vmware esxi/5.0
- version/vmware esxi/5.0-1
- version/vmware esxi/5.0-2
- version/vmware esxi/5.1
- version/vmware esxi/5.1-1
- version/vmware esxi/5.5
- version/vmware esxi/6.0
- canonical/vmware fusion pro
- version/vmware fusion pro/7.0
- version/vmware fusion pro/7.1
- version/vmware fusion pro/7.1.1