CVE-2016-7085

CVE Database · CVE-2016-7085

CVE-2016-7085

· N/AModified

CVSS v3.1

N/A

EPSS

0.42%

Published

Dec 29, 2016

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Untrusted search path vulnerability in the installer in VMware Workstation Pro 12.x before 12.5.0 and VMware Workstation Player 12.x before 12.5.0 on Windows allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Weaknesses (CWE)

CWE-426

Affected Products (9)

vmware · workstation_playervulnerable

vmware · workstation_provulnerable

microsoft · windows

References (6)

http://www.securityfocus.com/bid/92940

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036805

http://www.vmware.com/security/advisories/VMSA-2016-0014.html

Vendor Advisory

http://www.securityfocus.com/bid/92940

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036805

http://www.vmware.com/security/advisories/VMSA-2016-0014.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs