virus logo FortiClient Vulnerability

VMware Player CVE-2013-1406 Input Validation Bypass Vulnerability

description-logoDescription

VMware ESX, Workstation, Fusion, and View contain a vulnerability in the handling of control code in vmci.sys. A local malicious user may exploit this vulnerability to manipulate the memory allocation through the Virtual Machine Communication Interface (VMCI) code. This could result in a privilege escalation on Windows-based hosts and on Windows-based Guest Operating Systems.

affected-products-logoAffected Applications

VMware Player

CVE References

CVE-2013-1406

Other References

http://www.vmware.com/security/advisories/VMSA-2013-0002.1.html
ID 31556
Created Jul 11, 2018
Description
Updated		 Dec 20, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor VMware
Patch auto
Application VMware Player