CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2007-4591
https://notcve.org/view.php?id=CVE-2007-4591
29 Aug 2007 — vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode. vstor-ws60.sys en VMWare Workstation 6.0 permite a atacantes locales provocar una denegación de servicio (caída del sistema operativo del host) y posiblemente obtener privilegios mediante el envío de una valor pequeño de búfer de fichero al... • http://marc.info/?l=bugtraq&m=118805138626360&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 1EXPL: 1CVE-2007-4059 – VMware 'IntraProcessLogging.dll' 5.5.3.42958 - Arbitrary Data Write
https://notcve.org/view.php?id=CVE-2007-4059
30 Jul 2007 — Absolute path traversal vulnerability in a certain ActiveX control in IntraProcessLogging.dll 5.5.3.42958 in EMC VMware allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SetLogFileName method. Vulnerabilidad de salto de directorio absoluto en cierto control ActiveX en IntraProcessLogging.dll 5.5.3.42958 en EMC VMware permite a atacantes remotos crear o sobrescribir archivos de su elección a través de un nombre de ruta completa en el argumento en el mét... • https://www.exploit-db.com/exploits/4240 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-2491
https://notcve.org/view.php?id=CVE-2007-2491
04 May 2007 — The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337. El subsitema de administración de alimentación PIIX4 en EMC VMware Workstation 5.5.3.34685 y VMware Server 1.0.1.29996 permite a usuarios locales escribir en posiciones de memoria de su elecci... • http://osvdb.org/40088 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-1876
https://notcve.org/view.php?id=CVE-2007-1876
02 May 2007 — VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local users to "corrupt the virtual machine's register context" by debugging a local program and stepping into a "syscall instruction." MVware Workstation anterior a 5.5.4, cuando ejecuta Windows 64-bits como invitado en un anfitrión de 64 bits, permite a usuarios locales "corromper el contexto de registro de la máquina virtual" mediante la depuración de un programa local y el paso a una "instrucción de llamada al ... • http://osvdb.org/35509 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1337
https://notcve.org/view.php?id=CVE-2007-1337
02 May 2007 — The virtual machine process (VMX) in VMware Workstation before 5.5.4 does not properly read state information when moving from the ACPI sleep state to the run state, which allows attackers to cause a denial of service (virtual machine reboot) via unknown vectors. El proceso de máquina virtual (VMX) en VMware Workstation anterior a 5.5.4 no lee adecuadamente la informaci´no de estado cuando pasa del estado ACPI de suspensión a ejecución, lo cual permite a atacantes remotos provocar una denegación de servicio... • http://osvdb.org/35508 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1877
https://notcve.org/view.php?id=CVE-2007-1877
02 May 2007 — VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS by causing the virtual machine process (VMX) to store malformed configuration information. La estación de trabajo VMware anterior a la 5.5.4 permite a atacantes remotos provocar una denegación de servicio contra el invitado OS haciendo que el proceso de la máquina virtual (VMX) almacene información de configuración mal formado. • http://secunia.com/advisories/25079 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1069
https://notcve.org/view.php?id=CVE-2007-1069
02 May 2007 — The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service (Windows virtual machine crash) by triggering certain general protection faults (GPF). La gestión de memoria en VMware Workstation anterior a 5.5.4 permite a atacantes remotos provocar denegación de servicio (caida de la maquina virtual de windows)a través del disparo de ciertas averías generales de protección (GPF). • http://osvdb.org/35507 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2007-1744
https://notcve.org/view.php?id=CVE-2007-1744
02 May 2007 — Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface. Vulnerabilidad de salto de directorio en la característica Shared Folders para VMware Workstation anterior 5.5.4, cuando una carpeta es compartida, permite a usuarios sobre el sistema invitado escribir archivos de su elección sobre sistema host a través de la interfa... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1056
https://notcve.org/view.php?id=CVE-2007-1056
21 Feb 2007 — VMware Workstation 5.5.3 build 34685 does not provide per-user restrictions on certain privileged actions, which allows local users to perform restricted operations such as changing system time, accessing hardware components, and stopping the "VMware tools service" service. NOTE: exploitation is simplified via (1) weak file permissions (Users = Read & Execute) for %PROGRAMFILES%\VMware; and weak registry key permissions (access by Users) for (2) vmmouse, (3) vmscsi, (4) VMTools, (5) vmx_svga, and (6) vmxnet... • http://osvdb.org/45244 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-0832
https://notcve.org/view.php?id=CVE-2007-0832
07 Feb 2007 — VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox is changed, which allows local users to obtain sensitive information or conduct certain attacks that are facilitated by weaker isolation between the host and guest operating systems. VMware Workstation 5.5.3 34685 no cambia inmediatamente la disponibilidad de un porta papeles compartido cuando se cambia el check en el "habilitar cortar y... • http://osvdb.org/33222 •