CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2010-1139 – VMware Security Advisory 2010-0007
https://notcve.org/view.php?id=CVE-2010-1139
10 Apr 2010 — Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Linux, and VMware Fusion 2.x before 2.0.7 build 246742, allows local users to gain privileges via format string specifiers in process metadata. Vulnerabilidad de formato de cadena en vmrun en VMware VIX API v1.6.x, VMware Workstation v6.5.x antes de v6.5.4 build 246459, VMware Player v2.5.x antes de v2.5.4 build 246.459, y V... • http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.9EPSS: 5%CPEs: 35EXPL: 0CVE-2010-1141 – VMware Security Advisory 2010-0007
https://notcve.org/view.php?id=CVE-2010-1141
10 Apr 2010 — VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203138; VMware Fusion 2.x before 2.0.6 build 246742; VMware ESXi 3.5 and 4.0; and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0 does not properly access libraries, which allows user-assisted remote attackers to execute arbitrary code by tricking a Windows guest OS user into clicking on a file that is stored on a network sh... • http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 1%CPEs: 35EXPL: 0CVE-2010-1142 – VMware Security Advisory 2010-0007
https://notcve.org/view.php?id=CVE-2010-1142
10 Apr 2010 — VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203138; VMware Fusion 2.x before 2.0.6 build 246742; VMware ESXi 3.5 and 4.0; and VMware ESX 2.5.5, 3.0.3, 3.5, and 4.0 does not properly load VMware programs, which might allow Windows guest OS users to gain privileges by placing a Trojan horse program at an unspecified location on the guest OS disk. VMware Tools ... • http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 16%CPEs: 24EXPL: 2CVE-2009-3707 – VMware Player / VMware Workstation 6.5.3 - 'VMware-authd' Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-3707
16 Oct 2009 — VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459, and VMware Server 2.x allows remote attackers to cause a denial of service (process crash) via a \x25\xFF sequence in the USER and PASS commands, related to a "format string D... • https://www.exploit-db.com/exploits/33271 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 10.0EPSS: 14%CPEs: 16EXPL: 0CVE-2007-0061 – VMware Security Advisory 2007-0006
https://notcve.org/view.php?id=CVE-2007-0061
20 Sep 2007 — The DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed packet that triggers "corrupt stack memory." El servidor DHCP en EMC VMware Workstation anterior a 5.5.5 construcción 56455 y 6.x anterior a 6.0.1 construcción 55017, Player... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 7%CPEs: 16EXPL: 0CVE-2007-0063 – VMware Security Advisory 2007-0006
https://notcve.org/view.php?id=CVE-2007-0063
20 Sep 2007 — Integer underflow in the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed DHCP packet that triggers a stack-based buffer overflow. Desbordamiento inferior de entero en el servidor DHCP de EMC VMware Workstation anterior a 5.5.... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-191: Integer Underflow (Wrap or Wraparound) •