VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Feb 11, 2013· Updated Apr 29, 2026

CVE-2013-1406

CVE-2013-1406

Description

The Virtual Machine Communication Interface (VMCI) implementation in vmci.sys in VMware Workstation 8.x before 8.0.5 and 9.x before 9.0.1 on Windows, VMware Fusion 4.1 before 4.1.4 and 5.0 before 5.0.2, VMware View 4.x before 4.6.2 and 5.x before 5.1.2 on Windows, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1 does not properly restrict memory allocation by control code, which allows local users to gain privileges via unspecified vectors.

Affected products

39
  • VMware/Fusion6 versions
    cpe:2.3:a:vmware:fusion:4.1:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:vmware:fusion:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:4.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:4.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:4.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:5.0.1:*:*:*:*:*:*:*
  • VMware/View11 versions
    cpe:2.3:a:vmware:view:4.0.0:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:vmware:view:4.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:4.0.0:u2:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:4.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:4.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.0.0:u2:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:view:5.1.1:*:*:*:*:*:*:*
  • VMware/Workstation8 versions
    cpe:2.3:a:vmware:workstation:8.0:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:vmware:workstation:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.0.18997:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.1.27038:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:8.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:9.0:*:*:*:*:*:*:*
  • VMware/Esx2 versions
    cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*
  • VMware/Esxi12 versions
    cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.0:1:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.0:2:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.0:3:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.0:4:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.1:1:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.1:2:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.