CVSS: 10.0EPSS: 7%CPEs: 16EXPL: 0CVE-2007-0063 – VMware Security Advisory 2007-0006
https://notcve.org/view.php?id=CVE-2007-0063
20 Sep 2007 — Integer underflow in the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed DHCP packet that triggers a stack-based buffer overflow. Desbordamiento inferior de entero en el servidor DHCP de EMC VMware Workstation anterior a 5.5.... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-2491
https://notcve.org/view.php?id=CVE-2007-2491
04 May 2007 — The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337. El subsitema de administración de alimentación PIIX4 en EMC VMware Workstation 5.5.3.34685 y VMware Server 1.0.1.29996 permite a usuarios locales escribir en posiciones de memoria de su elecci... • http://osvdb.org/40088 •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2006-3589 – VMware Security Advisory 2007-0001
https://notcve.org/view.php?id=CVE-2006-3589
19 Jul 2006 — vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key. vmware-config.pl en VMware for Linux, ESX Server 2.x, y Infrastructure 3 no valida el código de retorno desde la llamada a la función Perl chmod, lo cual podría permitir un fichero llave SSL sea creado con una umask no segura que permite a usuarios ... • http://kb.vmware.com/kb/2467205 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2006-2662
https://notcve.org/view.php?id=CVE-2006-2662
02 Jun 2006 — VMware Server before RC1 does not clear user credentials from memory after a console connection is made, which might allow local attackers to gain privileges. • http://securitytracker.com/id?1016200 •