CVE-2016-5330
First published: Mon Aug 08 2016(Updated: )
Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Workstation Player | >=12.1.0<12.1.1 | |
| VMware Workstation Pro | >=12.1.0<12.1.1 | |
| VMware ESXi | >=5.0<=6.0 | |
| VMware Fusion Pro | >=8.1<8.1.1 | |
| Apple iOS and macOS | ||
| VMware Tools | >=9.0.0<=10.3.22 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideload
- http://www.securityfocus.com/archive/1/539131/100/0/threaded
- http://www.securityfocus.com/bid/92323
- http://www.securitytracker.com/id/1036544
- http://www.securitytracker.com/id/1036545
- http://www.securitytracker.com/id/1036619
- http://www.vmware.com/security/advisories/VMSA-2016-0010.html
- https://securify.nl/advisory/SFY20151201/dll_side_loading_vulnerability_in_vmware_host_guest_client_redirector.html
Frequently Asked Questions
What is the severity of CVE-2016-5330?
The severity of CVE-2016-5330 is considered high due to its potential for privilege escalation.
How do I fix CVE-2016-5330?
To fix CVE-2016-5330, upgrade VMware Tools to version 10.3.22 or later, and ensure all affected VMware products are updated to the latest versions.
Which VMware products are affected by CVE-2016-5330?
CVE-2016-5330 affects VMware ESXi 5.0 to 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1.
Can local users exploit CVE-2016-5330?
Yes, local users can exploit CVE-2016-5330 to gain elevated privileges on the affected systems.
What is the nature of the vulnerability in CVE-2016-5330?
CVE-2016-5330 is an untrusted search path vulnerability in the HGFS feature of VMware Tools.
- agent/references
- agent/type
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/vmware
- canonical/vmware workstation player
- version/vmware workstation player/12.1.0
- canonical/vmware workstation pro
- version/vmware workstation pro/12.1.0
- canonical/vmware esxi
- version/vmware esxi/5.0
- version/vmware esxi/6.0
- canonical/vmware fusion pro
- version/vmware fusion pro/8.1
- vendor/apple
- canonical/apple ios and macos
- canonical/vmware tools
- version/vmware tools/9.0.0
- version/vmware tools/10.3.22
- vendor/microsoft
- canonical/microsoft windows