CVE-2012-3288

EUVD-2012-3266
VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware Player 3.x before 3.1.6 and 4.x before 4.0.4, VMware Fusion 4.x before 4.1.3, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow user-assisted remote attackers to execute arbitrary code on the host OS or cause a denial of service (memory corruption) on the host OS via a crafted Checkpoint file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
Affected Products (NVD)
VendorProductVersion
vmwareworkstation
7.0
vmwareworkstation
7.0.1
vmwareworkstation
7.1
vmwareworkstation
7.1.1
vmwareworkstation
7.1.2
vmwareworkstation
7.1.3
vmwareworkstation
7.1.4
vmwareworkstation
7.1.4.16648
vmwareworkstation
7.1.5
vmwareworkstation
8.0
vmwareworkstation
8.0.1
vmwareworkstation
8.0.2
vmwareworkstation
8.0.3
vmwareplayer
3.0
vmwareplayer
3.0.1
vmwareplayer
3.1
vmwareplayer
3.1.1
vmwareplayer
3.1.2
vmwareplayer
3.1.3
vmwareplayer
3.1.4
vmwareplayer
3.1.5
vmwareplayer
4.0
vmwareplayer
4.0.1
vmwareplayer
4.0.2
vmwareplayer
4.0.3
vmwarefusion
4.0
vmwarefusion
4.0.1
vmwarefusion
4.0.2
vmwarefusion
4.1
vmwarefusion
4.1.1
vmwarefusion
4.1.2
vmwareesx
3.5
vmwareesx
3.5:update1
vmwareesx
3.5:update2
vmwareesx
3.5:update3
vmwareesx
4.0
vmwareesx
4.1
vmwareesxi
3.5
vmwareesxi
3.5:1
vmwareesxi
4.0
vmwareesxi
4.0:1
vmwareesxi
4.0:2
vmwareesxi
4.0:3
vmwareesxi
4.0:4
vmwareesxi
4.1
vmwareesxi
4.1:1
vmwareesxi
4.1:2
vmwareesxi
5.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.vmware.com/security/advisories/VMSA-2012-0011.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17178
http://www.vmware.com/security/advisories/VMSA-2012-0011.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17178