CVE-2016-5330

Published: Aug 8, 2016Modified: May 6, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected (5)

Products: Vmware: Esxi, Workstation Player, Workstation Pro, Fusion, Tools

5 products

Workstation Player

Workstation Pro

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Vmware Esxi	From 5.0 to 6.0
Vmware Workstation Player	From 12.1.0 to 12.1.1
Vmware Workstation Pro	From 12.1.0 to 12.1.1

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Vmware Fusion	From 8.1 to 8.1.1

Running on/with	Platform Versions
Apple Mac Os X	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Vmware Tools	From 9.0.0 to 10.3.22

Running on/with	Platform Versions
Microsoft Windows	All versions

Related CWEs

Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

References (16)

http://www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideload

Source: cve@mitre.org

Third Party Advisory

http://www.securityfocus.com/archive/1/539131/100/0/threaded

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/92323

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036544

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036545

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036619

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.vmware.com/security/advisories/VMSA-2016-0010.html

Source: cve@mitre.org

MitigationVendor Advisory

https://securify.nl/advisory/SFY20151201/dll_side_loading_vulnerability_in_vmware_host_guest_client_redirector.html

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideload

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.securityfocus.com/archive/1/539131/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/92323

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036544

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036545

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036619

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.vmware.com/security/advisories/VMSA-2016-0010.html

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

https://securify.nl/advisory/SFY20151201/dll_side_loading_vulnerability_in_vmware_host_guest_client_redirector.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.