CVE-2015-2336

Name of the Vulnerable Software and Affected Versions VMware Workstation versions 10.x through 10.0.5 and 11.x through 11.1.0 VMware Player versions 6.x through 6.0.5 and 7.x through 7.1.0 VMware Horizon Client versions 3.2.x through 3.2.0, 3.3.x, and 5.x local-mode through 5.4.1

Description The issue is related to errors in resource management in the TPView.dll library, which can allow users of the guest operating system to execute code in the host operating system. This is due to improper memory allocation.

Recommendations For VMware Workstation versions 10.x through 10.0.5, update to version 10.0.6 or later. For VMware Workstation versions 11.x through 11.1.0, update to version 11.1.1 or later. For VMware Player versions 6.x through 6.0.5, update to version 6.0.6 or later. For VMware Player versions 7.x through 7.1.0, update to version 7.1.1 or later. For VMware Horizon Client versions 3.2.x through 3.2.0, update to version 3.2.1 or later. For VMware Horizon Client versions 3.3.x, update to a version that is not affected by this issue. For VMware Horizon Client versions 5.x local-mode through 5.4.1, update to version 5.4.2 or later.