Vulnerability in Vmware Player

CVE-2014-2384

vmx86.sys in VMware Workstation 10.0.1 build 1379776 and VMware Player 6.0.1 build 1379776 on Windows might allow local users to cause a denial of service (read access violation and system crash) via a crafted buffer in an IOCTL call. NOT…

EPSS: 0.000 (13.8th percentile) — read the EPSS interpretation.

Affected products

Vmware Player — versions 6.0.1_build_1379776
Vmware Workstation — versions 10.0.1_build_1379776
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

20140411 CVE-2014-2384 - Invalid Pointer Dereference in VMware Workstation and Player (mailing-list, x_refsource_FULLDISC)
cve@mitre.org (x_refsource_MISC)