High severity7.8NVD Advisory· Published Aug 8, 2016· Updated Jun 17, 2026
CVE-2016-5330
CVE-2016-5330
Description
Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 through 6.0, VMware Workstation Pro 12.1.x before 12.1.1, VMware Workstation Player 12.1.x before 12.1.1, and VMware Fusion 8.1.x before 8.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:vmware:workstation_player:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:vmware:workstation_player:*:*:*:*:*:*:*:*range: >=12.1.0,<12.1.1
- cpe:2.3:a:vmware:workstation_pro:*:*:*:*:*:*:*:*range: >=12.1.0,<12.1.1
Patches
Vulnerability mechanics
References
8- securify.nl/advisory/SFY20151201/dll_side_loading_vulnerability_in_vmware_host_guest_client_redirector.htmlnvdExploitThird Party Advisory
- www.rapid7.com/db/modules/exploit/windows/misc/vmhgfs_webdav_dll_sideloadnvdThird Party Advisory
- www.securityfocus.com/archive/1/539131/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/92323nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036544nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036545nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036619nvdThird Party AdvisoryVDB Entry
- www.vmware.com/security/advisories/VMSA-2016-0010.htmlnvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.