Out-of-Bounds Memory Access Vulnerability in VMware Workstation and Fusion

Out-of-Bounds Memory Access Vulnerability in VMware Workstation and Fusion

CVE-2017-4901 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion.

Learn more about our Cis Benchmark Audit For Vmware.