CVE-2004-2515

Name of the Vulnerable Software and Affected Versions VMware Workstation version 4.5.2 build-8848

Description A format string issue might allow local users to execute arbitrary code via format string specifiers in command line arguments, but only if running with elevated privileges. It is unclear if default or typical circumstances would allow VMware to run with such elevated privileges.

Recommendations For version 4.5.2 build-8848, consider running VMware Workstation with restricted privileges to minimize the risk of exploitation. As a temporary workaround, avoid using format string specifiers in command line arguments until a fix is available.