CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-1876
https://notcve.org/view.php?id=CVE-2007-1876
02 May 2007 — VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local users to "corrupt the virtual machine's register context" by debugging a local program and stepping into a "syscall instruction." MVware Workstation anterior a 5.5.4, cuando ejecuta Windows 64-bits como invitado en un anfitrión de 64 bits, permite a usuarios locales "corromper el contexto de registro de la máquina virtual" mediante la depuración de un programa local y el paso a una "instrucción de llamada al ... • http://osvdb.org/35509 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1337
https://notcve.org/view.php?id=CVE-2007-1337
02 May 2007 — The virtual machine process (VMX) in VMware Workstation before 5.5.4 does not properly read state information when moving from the ACPI sleep state to the run state, which allows attackers to cause a denial of service (virtual machine reboot) via unknown vectors. El proceso de máquina virtual (VMX) en VMware Workstation anterior a 5.5.4 no lee adecuadamente la informaci´no de estado cuando pasa del estado ACPI de suspensión a ejecución, lo cual permite a atacantes remotos provocar una denegación de servicio... • http://osvdb.org/35508 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2007-1744
https://notcve.org/view.php?id=CVE-2007-1744
02 May 2007 — Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface. Vulnerabilidad de salto de directorio en la característica Shared Folders para VMware Workstation anterior 5.5.4, cuando una carpeta es compartida, permite a usuarios sobre el sistema invitado escribir archivos de su elección sobre sistema host a través de la interfa... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1877
https://notcve.org/view.php?id=CVE-2007-1877
02 May 2007 — VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS by causing the virtual machine process (VMX) to store malformed configuration information. La estación de trabajo VMware anterior a la 5.5.4 permite a atacantes remotos provocar una denegación de servicio contra el invitado OS haciendo que el proceso de la máquina virtual (VMX) almacene información de configuración mal formado. • http://secunia.com/advisories/25079 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1069
https://notcve.org/view.php?id=CVE-2007-1069
02 May 2007 — The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service (Windows virtual machine crash) by triggering certain general protection faults (GPF). La gestión de memoria en VMware Workstation anterior a 5.5.4 permite a atacantes remotos provocar denegación de servicio (caida de la maquina virtual de windows)a través del disparo de ciertas averías generales de protección (GPF). • http://osvdb.org/35507 •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2006-3589
https://notcve.org/view.php?id=CVE-2006-3589
19 Jul 2006 — vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key. vmware-config.pl en VMware for Linux, ESX Server 2.x, y Infrastructure 3 no valida el código de retorno desde la llamada a la función Perl chmod, lo cual podría permitir un fichero llave SSL sea creado con una umask no segura que permite a usuarios ... • http://kb.vmware.com/kb/2467205 •
CVSS: 10.0EPSS: 63%CPEs: 20EXPL: 1CVE-2005-4459
https://notcve.org/view.php?id=CVE-2005-4459
21 Dec 2005 — Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands. • http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040442.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0444
https://notcve.org/view.php?id=CVE-2005-0444
14 Feb 2005 — VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code. • http://security.gentoo.org/glsa/glsa-200502-18.xml •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0739
https://notcve.org/view.php?id=CVE-2003-0739
04 Sep 2003 — VMware Workstation 4.0.1 for Linux, build 5289 and earlier, allows local users to delete arbitrary files via a symlink attack. • http://marc.info/?l=bugtraq&m=106029217115023&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1059
https://notcve.org/view.php?id=CVE-2001-1059
30 Jul 2001 — VMWare creates a temporary file vmware-log.USERNAME with insecure permissions, which allows local users to read or modify license information. • http://www.osvdb.org/5475 •