VYPR
Unrated severityNVD Advisory· Published Dec 4, 2013· Updated Jun 16, 2026

CVE-2013-3519

CVE-2013-3519

Description

lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x before 5.0.3, VMware Fusion 5.x before 5.0.4, VMware ESXi 4.0 through 5.1, and VMware ESX 4.0 and 4.1, when a 32-bit Windows guest OS is used, allows guest OS users to gain guest OS privileges via an application that performs a crafted memory allocation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • VMware/Fusion4 versions
    cpe:2.3:a:vmware:fusion:5.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:vmware:fusion:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:fusion:5.0.3:*:*:*:*:*:*:*
  • VMware/Player4 versions
    cpe:2.3:a:vmware:player:5.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:vmware:player:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:player:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:player:5.0.2:*:*:*:*:*:*:*
    • (no CPE)range: <5.0.3
  • cpe:2.3:a:vmware:workstation:9.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:vmware:workstation:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:9.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:9.0.2:*:*:*:*:*:*:*
    • (no CPE)range: <9.0.3
  • VMware/Esx2 versions
    cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*
  • VMware/Esxi5 versions
    cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*
    • cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*
    • (no CPE)range: >=4.0, <=5.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.