VMware Fusion 8.x < 8.5.0 Multiple Privilege Escalations (VMSA-2016-0014) (Mac OS X)
High Nessus Plugin ID 93519
SynopsisA virtualization application installed on the remote Mac OS X host is affected by multiple privilege escalation vulnerabilities.
DescriptionThe version of VMware Fusion installed on the remote Mac OS X host is 8.x prior to 8.5.0. It is, therefore, affected by multiple NULL pointer dereference flaws in the graphic acceleration functions due to improper memory handling. A local attacker can exploit these to gain elevated privileges.
SolutionUpgrade to VMware Fusion version 8.5.0 or later. Note that VMware Tools on Mac OS X-based guests must also be updated to completely mitigate these vulnerabilities.