CVE-2012-5458

CVE Database · CVE-2012-5458

CVE-2012-5458

· N/AModified

CVSS v3.1

N/A

EPSS

0.70%

Published

Nov 14, 2012

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a crafted application.

Weaknesses (CWE)

CWE-264

Affected Products (14)

vmware · playervulnerable

vmware · workstationvulnerable

· workstation

References (8)

http://osvdb.org/87118

http://www.securityfocus.com/bid/56469

http://www.vmware.com/security/advisories/VMSA-2012-0015.html

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/79924

http://osvdb.org/87118

http://www.securityfocus.com/bid/56469

http://www.vmware.com/security/advisories/VMSA-2012-0015.html

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/79924

KEV Catalog EPSS Scores Vendors All CVEs