CVE-2010-1140

medium VMware
CVSS v3 Base Score
6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 75% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Published: April 12, 2010 (5876 days ago)
Last Modified: April 29, 2026
Vendor: VMware
Source: NVD

Description

The USB service in VMware Workstation 7.0 before 7.0.1 build 227600 and VMware Player 3.0 before 3.0.1 build 227600 on Windows might allow host OS users to gain privileges by placing a Trojan horse program at an unspecified location on the host OS disk.

CWE

CWE-264

Affected Products

vmware workstationvmware player

References

🔗 archives.neohapsis.com 🔗 archives.neohapsis.com 🔗 lists.vmware.com 🔗 secunia.com 🔗 security.gentoo.org