BID:104237

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

CVE-2018-6963 |

Info

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

Bugtraq ID:	104237
Class:	Design Error
CVE:	CVE-2018-6963
Remote:	Yes
Local:	No
Published:	May 21 2018 12:00AM
Updated:	May 21 2018 12:00AM
Credit:	Hahna Latonick and Kevin Fujimoto working with Trend Micro's Zero Day Initiative, and Bruno Botelho (@utxsec).
Vulnerable:	VMWare Workstation 14.1.1 VMWare Workstation 14.1 VMWare Workstation 14.0 VMWare Fusion 10.1.1 VMWare Fusion 10.0

Not Vulnerable:	VMWare Workstation 14.1.2 VMWare Fusion 10.1.2

Discussion

Exploit / POC

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

VMware Workstation and Fusion CVE-2018-6963 Multiple Denial of Service Vulnerabilities

References:

VMware Homepage (VMware)
VMSA-2018-0013: VMware Security Advisories (VMware)