QwikSec

Security Database

CVE

CWE

Training

CVE-2014-2384

Published: Apr 15, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

vmx86.sys in VMware Workstation 10.0.1 build 1379776 and VMware Player 6.0.1 build 1379776 on Windows might allow local users to cause a denial of service (read access violation and system crash) via a crafted buffer in an IOCTL call. NOTE: the researcher reports "Vendor rated issue as non-exploitable."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20140411 CVE-2014-2384 - Invalid Pointer Dereference in VMware Workstation and Player

mailing-list

x_refsource_FULLDISC

https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2384/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.