DLL Loading Vulnerability in VMware Workstation Pro/Player 12.x

DLL Loading Vulnerability in VMware Workstation Pro/Player 12.x

CVE-2017-4898 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

VMware Workstation Pro/Player 12.x before 12.5.3 contains a DLL loading vulnerability that occurs due to the "vmware-vmx" process loading DLLs from a path defined in the local environment-variable. Successful exploitation of this issue may allow normal users to escalate privileges to System in the host machine where VMware Workstation is installed.

Learn more about our User Device Pen Test.