Details of VAR-201706-0515

ID

VAR-201706-0515

CVE

CVE-2017-4901

TITLE

VMware Workstation and Fusion of drag-and-drop Memory out-of-bounds access vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-004628

DESCRIPTION

The drag-and-drop (DnD) function in VMware Workstation 12.x before version 12.5.4 and Fusion 8.x before version 8.5.5 has an out-of-bounds memory access vulnerability. This may allow a guest to execute code on the operating system that runs Workstation or Fusion. VMwareWorkstation and others are virtual machine software products of the US company. VMwareWorkstation is a set of expensive and feature-rich virtual machine software. VMwareWorkstationPlayer is a set of free, open source and simpler virtual machine software. VMWareFusion allows seamless running of Windows applications on Intel-based Mac machines. A memory corruption vulnerability exists in multiple VMware products. An attacker could exploit this vulnerability to execute arbitrary code in the context of a user running in an affected program, which would result in a denial of service. Failed exploit attempts will likely result in denial-of-service conditions. The following products are vulnerable: VMware Workstation Pro 12.x VMware Workstation Player 12.x VMware Fusion Pro 8.x VMware Fusion 8.x

Trust: 2.52

sources: NVD: CVE-2017-4901 // JVNDB: JVNDB-2017-004628 // CNVD: CNVD-2017-03742 // BID: 96881 // VULMON: CVE-2017-4901

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-03742

AFFECTED PRODUCTS

vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.2	Trust: 1.9
vendor:	vmware	model:	fusion	scope:	eq	version:	8.0.1	Trust: 1.9
vendor:	vmware	model:	fusion	scope:	eq	version:	8.0.0	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.4	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.0	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.1	Trust: 1.6
vendor:	vmware	model:	workstation	scope:	eq	version:	12.0	Trust: 1.6
vendor:	vmware	model:	workstation	scope:	eq	version:	12.0.1	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.1.0	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.3	Trust: 1.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.1.1	Trust: 1.3
vendor:	vmware	model:	fusion	scope:	eq	version:	8.0.2	Trust: 1.3
vendor:	vmware	model:	workstation	scope:	eq	version:	12.5.2	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.5	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.5.1	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.5.3	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.1	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.1.1	Trust: 1.0
vendor:	vmware	model:	workstation	scope:	eq	version:	12.5.4	Trust: 0.8
vendor:	vmware	model:	fusion	scope:	lt	version:	8.x	Trust: 0.8
vendor:	vmware	model:	workstation	scope:	lt	version:	12.x	Trust: 0.8
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5.5	Trust: 0.8
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.x	Trust: 0.6
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.x	Trust: 0.6
vendor:	vmware	model:	fusion	scope:	eq	version:	8.x	Trust: 0.6
vendor:	vmware	model:	fusion pro	scope:	eq	version:	8.x	Trust: 0.6
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.5.3	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.5.2	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.1	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.5.0	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	eq	version:	12.0	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.5.3	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.5.2	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.5	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.1.1	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.1	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	eq	version:	12.0	Trust: 0.3
vendor:	vmware	model:	fusion pro	scope:	eq	version:	8.5.2	Trust: 0.3
vendor:	vmware	model:	fusion pro	scope:	eq	version:	8.5	Trust: 0.3
vendor:	vmware	model:	fusion pro	scope:	eq	version:	8.0	Trust: 0.3
vendor:	vmware	model:	fusion	scope:	eq	version:	8.1	Trust: 0.3
vendor:	vmware	model:	fusion	scope:	eq	version:	8.5	Trust: 0.3
vendor:	vmware	model:	fusion	scope:	eq	version:	8.0	Trust: 0.3
vendor:	vmware	model:	workstation pro	scope:	ne	version:	12.5.4	Trust: 0.3
vendor:	vmware	model:	workstation player	scope:	ne	version:	12.5.4	Trust: 0.3
vendor:	vmware	model:	fusion pro	scope:	ne	version:	8.5.5	Trust: 0.3
vendor:	vmware	model:	fusion	scope:	ne	version:	8.5.5	Trust: 0.3

sources: CNVD: CNVD-2017-03742 // BID: 96881 // JVNDB: JVNDB-2017-004628 // CNNVD: CNNVD-201703-678 // NVD: CVE-2017-4901

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-4901
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2017-4901
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2017-03742
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201703-678
value:	HIGH
Trust: 0.6
VULMON:	CVE-2017-4901
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2017-4901
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2017-03742
severity:	HIGH
baseScore:	9.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	8.5
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2017-4901
baseSeverity:	CRITICAL
baseScore:	9.9
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.1
impactScore:	6.0
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-03742 // VULMON: CVE-2017-4901 // JVNDB: JVNDB-2017-004628 // CNNVD: CNNVD-201703-678 // NVD: CVE-2017-4901

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.8

sources: JVNDB: JVNDB-2017-004628 // NVD: CVE-2017-4901

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201703-678

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201703-678

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-004628

EXPLOIT AVAILABILITY

sources: VULMON: CVE-2017-4901

PATCH

title:	VMSA-2017-0005	url:	https://www.vmware.com/security/advisories/VMSA-2017-0005.html	Trust: 0.8
title:	Patch for several VMware Product Memory Corruption Vulnerabilities (CNVD-2017-03742)	url:	https://www.cnvd.org.cn/patchInfo/show/91373	Trust: 0.6
title:	Multiple VMware Product security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=68523	Trust: 0.6
title:	VMware Security Advisories: VMware Workstation and Fusion updates address out-of-bounds memory access vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=vmware_security_advisories&qid=4cc06db86a5adc2cabb5949c6f8b92fd	Trust: 0.1
title:	123	url:	https://github.com/wangsheng123168/123	Trust: 0.1

sources: CNVD: CNVD-2017-03742 // VULMON: CVE-2017-4901 // JVNDB: JVNDB-2017-004628 // CNNVD: CNNVD-201703-678

EXTERNAL IDS

db:	NVD	id:	CVE-2017-4901	Trust: 3.4
db:	BID	id:	96881	Trust: 1.9
db:	SECTRACK	id:	1038025	Trust: 1.0
db:	JVNDB	id:	JVNDB-2017-004628	Trust: 0.8
db:	CNVD	id:	CNVD-2017-03742	Trust: 0.6
db:	EXPLOIT-DB	id:	47714	Trust: 0.6
db:	CNNVD	id:	CNNVD-201703-678	Trust: 0.6
db:	VULMON	id:	CVE-2017-4901	Trust: 0.1

sources: CNVD: CNVD-2017-03742 // VULMON: CVE-2017-4901 // BID: 96881 // JVNDB: JVNDB-2017-004628 // CNNVD: CNNVD-201703-678 // NVD: CVE-2017-4901

REFERENCES

url:	http://www.securityfocus.com/bid/96881	Trust: 1.6
url:	https://www.vmware.com/security/advisories/vmsa-2017-0005.html	Trust: 1.3
url:	http://www.securitytracker.com/id/1038025	Trust: 1.0
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-4901	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-4901	Trust: 0.8
url:	https://www.exploit-db.com/exploits/47714	Trust: 0.6
url:	http://www.vmware.com	Trust: 0.3

sources: CNVD: CNVD-2017-03742 // BID: 96881 // JVNDB: JVNDB-2017-004628 // CNNVD: CNNVD-201703-678 // NVD: CVE-2017-4901

CREDITS

unamer

Trust: 0.6

sources: CNNVD: CNNVD-201703-678

SOURCES

db:	CNVD	id:	CNVD-2017-03742
db:	VULMON	id:	CVE-2017-4901
db:	BID	id:	96881
db:	JVNDB	id:	JVNDB-2017-004628
db:	CNNVD	id:	CNNVD-201703-678
db:	NVD	id:	CVE-2017-4901

LAST UPDATE DATE

2024-11-23T22:38:33.323000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-03742	date:	2017-03-31T00:00:00
db:	VULMON	id:	CVE-2017-4901	date:	2017-07-12T00:00:00
db:	BID	id:	96881	date:	2017-03-16T01:02:00
db:	JVNDB	id:	JVNDB-2017-004628	date:	2017-06-30T00:00:00
db:	CNNVD	id:	CNNVD-201703-678	date:	2019-11-26T00:00:00
db:	NVD	id:	CVE-2017-4901	date:	2024-11-21T03:26:37.950

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-03742	date:	2017-03-31T00:00:00
db:	VULMON	id:	CVE-2017-4901	date:	2017-06-08T00:00:00
db:	BID	id:	96881	date:	2017-03-14T00:00:00
db:	JVNDB	id:	JVNDB-2017-004628	date:	2017-06-30T00:00:00
db:	CNNVD	id:	CNNVD-201703-678	date:	2017-03-17T00:00:00
db:	NVD	id:	CVE-2017-4901	date:	2017-06-08T13:29:00.187