CVSS: 7.2EPSS: 0%CPEs: 17EXPL: 0CVE-2008-2100
https://notcve.org/view.php?id=CVE-2008-2100
Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on VMware Workstation 5.x and 6.x, VMware Player 1.x and 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, and VMware ESX 3.0.1 through 3.5 allow guest OS users to execute arbitrary code on the host OS via unspecified vectors. Múltiples desbordamientos de buffer en VIX API 1.1.x anteriores a 1.1.4 build 93057 en VMware Workstation 5.x y 6.x, VMware Player 1.x y 2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, y VMware ESX 3.0.1 hasta la 3.5, permite a los usuarios del sistema huésped, ejecutar código arbitrario en el sistema anfitrión a través de vectores no específicos. • http://secunia.com/advisories/30556 http://security.gentoo.org/glsa/glsa-201209-25.xml http://securityreason.com/securityalert/3922 http://securitytracker.com/id?1020200 http://www.securityfocus.com/archive/1/493080/100/0/threaded http://www.securityfocus.com/bid/29552 http://www.vmware.com/security/advisories/VMSA-2008-0009.html http://www.vupen.com/english/advisories/2008/1744 https://exchange.xforce.ibmcloud.com/vulnerabilities/42872 https://oval.cisecurity.org/repository/search/de • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 2%CPEs: 3EXPL: 0CVE-2007-1270
https://notcve.org/view.php?id=CVE-2007-1270
Double free vulnerability in VMware ESX Server 3.0.0 and 3.0.1 allows attackers to cause a denial of service (crash), obtain sensitive information, or possibly execute arbitrary code via unspecified vectors. Vulnerabilidad de doble liberación en el VMware ESX Server 3.0.0 y 3.0.1 permite a los atacantes provocar una denegación de servicio (caída), obtener información sensible o, posiblemente, ejecutar código de su elección a través de vectores sin especificar. • http://osvdb.org/35268 http://secunia.com/advisories/24788 http://securityreason.com/securityalert/2524 http://www.securityfocus.com/archive/1/464745/100/0/threaded http://www.securityfocus.com/bid/23323 http://www.securitytracker.com/id?1017875 http://www.vmware.com/support/vi3/doc/esx-5754280-patch.html http://www.vmware.com/support/vi3/doc/esx-6431040-patch.html http://www.vupen.com/english/advisories/2007/1267 https://oval.cisecurity.org/repository/search/definition/ova • CWE-189: Numeric Errors •