CVE-2010-3277

low

VMware

CVSS v3 Base Score

2.1

AV:L/AC:L/Au:N/C:N/I:P/A:N

EPSS Score

0.1%

Exploitation probability in 30 days

Top 73% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Low

Confidentiality

None

Integrity

Availability

None

Published: September 28, 2010 (5707 days ago)

Last Modified: April 29, 2026

Vendor: VMware

Source: NVD

Description

The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 renders an index.htm file if present in the installation directory, which might allow local users to trigger unintended interpretation of web script or HTML by creating this file.

CWE

CWE-264

Affected Products

vmware workstationvmware player

References

🔗 lists.vmware.com 🔗 secunia.com 🔗 securitytracker.com 🔗 www.vmware.com 🔗 www.vupen.com

CVE-2010-3277

Vulnerability Report

Description

CWE

Affected Products

References