CVE-2016-2077

EUVD-2016-3182
VMware Workstation 11.x before 11.1.3 and VMware Player 7.x before 7.1.3 on Windows incorrectly access an executable file, which allows host OS users to gain host OS privileges via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
vmwareplayer
7.0
vmwareplayer
7.1
vmwareplayer
7.1.1
vmwareplayer
7.1.2
vmwareworkstation
11.0
vmwareworkstation
11.1
vmwareworkstation
11.1.1
vmwareworkstation
11.1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1035900
http://www.vmware.com/security/advisories/VMSA-2016-0005.html
http://www.securitytracker.com/id/1035900
http://www.vmware.com/security/advisories/VMSA-2016-0005.html