Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2012-5459

Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "system folder."

  • Published: Nov 14, 2012
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-5459
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.9
  • AV:A/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
vmware / player 4.0 4.0.x
vmware / player 4.0.0.18997 4.0.0.18997.x
vmware / player 4.0.1 4.0.1.x
vmware / player 4.0.2 4.0.2.x
vmware / player 4.0.3 4.0.3.x
vmware / player 4.0.4 4.0.4.x
vmware / workstation 8.0 8.0.x
vmware / workstation 8.0.0.18997 8.0.0.18997.x
vmware / workstation 8.0.1 8.0.1.x
vmware / workstation 8.0.1.27038 8.0.1.27038.x
vmware / workstation 8.0.2 8.0.2.x
vmware / workstation 8.0.3 8.0.3.x
vmware / workstation 8.0.4 8.0.4.x