Remote Code Execution Vulnerabilities in multiple VMware products 'tpview. dll 'and 'tpint. dll'

Remote Code Execution Vulnerabilities in multiple VMware products 'tpview. dll 'and 'tpint. dll'
Remote Code Execution Vulnerabilities in multiple VMware products 'tpview. dll 'and 'tpint. dll'

Release date:
Updated on:

Affected Systems:

VMWare Workstation 11.x
VMWare Workstation 10.x
VMWare Player 7.x
VMWare Player 6.x
VMWare Fusion 7.x
VMWare Fusion 6.x

Description:

Bugtraq id: 75095
CVE (CAN) ID: CVE-2015-2336, CVE-2015-2337

VMWare is a "Virtual PC" software that can run two or more Windows, DOS, and LINUX systems simultaneously on one machine.

Multiple VMware products have multiple remote code execution vulnerabilities. Remote attackers exploit these vulnerabilities to execute arbitrary code in the context of the affected application.

<* Source: Kostya Kortchinsk

Link: https://www.vmware.com/security/advisories/VMSA-2015-0004
*>

Suggestion:

Vendor patch:

VMWare
------
VMWare has released a Security Bulletin (VMSA-2015-0004) and patches for this:
VMSA-2015-0004: VMware Workstation, Fusion and Horizon View Client updates address critical security issues
Link: https://www.vmware.com/security/advisories/VMSA-2015-0004

This article permanently updates the link address: