CVE-2015-2338

medium

Description

TPview.dll in VMware Workstation 10.x before 10.0.6 and 11.x before 11.1.1, VMware Player 6.x before 6.0.6 and 7.x before 7.1.1, and VMware Horizon Client 3.2.x before 3.2.1, 3.3.x, and 5.x local-mode before 5.4.2 on Windows does not properly allocate memory, which allows guest OS users to cause a host OS denial of service via unspecified vectors, a different vulnerability than CVE-2015-2339.

References

http://www.vmware.com/security/advisories/VMSA-2015-0004.html

http://www.securitytracker.com/id/1032530

http://www.securitytracker.com/id/1032529

http://www.securityfocus.com/bid/75092

Details

Source: Mitre, NVD

Published: 2015-06-13

Updated: 2016-12-31

Risk Information

CVSS v2

Base Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium