CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2007-5023
https://notcve.org/view.php?id=CVE-2007-5023
21 Sep 2007 — Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder. Una vulnerabilidad de ruta (path) de búsqueda de Windows sin comillas en EMC VMware Workstation versiones anteriores... • http://www.securityfocus.com/bid/25732 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 72%CPEs: 16EXPL: 0CVE-2007-0063
https://notcve.org/view.php?id=CVE-2007-0063
21 Sep 2007 — Integer underflow in the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed DHCP packet that triggers a stack-based buffer overflow. Desbordamiento inferior de entero en el servidor DHCP de EMC VMware Workstation anterior a 5.5.... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2007-4497
https://notcve.org/view.php?id=CVE-2007-4497
21 Sep 2007 — Unspecified vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows users with login access to a guest operating system to cause a denial of service (guest outage and host process crash or hang) via unspecified vectors. Vulnerabilidad no especificada en EMC VMware Workstation anterior a 5.... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2007-4496
https://notcve.org/view.php?id=CVE-2007-4496
21 Sep 2007 — Unspecified vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows authenticated users with administrative privileges on a guest operating system to corrupt memory and possibly execute arbitrary code on the host operating system via unspecified vectors. Vulnerabilidad no especificada en E... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html • CWE-399: Resource Management Errors •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4593
https://notcve.org/view.php?id=CVE-2007-4593
29 Aug 2007 — Unspecified vulnerability in vstor2-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) via unspecified vectors, as demonstrated by the DC2 test suite, possibly a related issue to CVE-2007-4591. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Vulnerabilidad no especificada en vstor2-ws60.sys de VMWare Workstation 6.0 permite a atacantes remotos provocar una denegación de servicio (... • http://osvdb.org/40087 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2007-4591
https://notcve.org/view.php?id=CVE-2007-4591
29 Aug 2007 — vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode. vstor-ws60.sys en VMWare Workstation 6.0 permite a atacantes locales provocar una denegación de servicio (caída del sistema operativo del host) y posiblemente obtener privilegios mediante el envío de una valor pequeño de búfer de fichero al... • http://marc.info/?l=bugtraq&m=118805138626360&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 1EXPL: 1CVE-2007-4059 – VMware 'IntraProcessLogging.dll' 5.5.3.42958 - Arbitrary Data Write
https://notcve.org/view.php?id=CVE-2007-4059
30 Jul 2007 — Absolute path traversal vulnerability in a certain ActiveX control in IntraProcessLogging.dll 5.5.3.42958 in EMC VMware allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SetLogFileName method. Vulnerabilidad de salto de directorio absoluto en cierto control ActiveX en IntraProcessLogging.dll 5.5.3.42958 en EMC VMware permite a atacantes remotos crear o sobrescribir archivos de su elección a través de un nombre de ruta completa en el argumento en el mét... • https://www.exploit-db.com/exploits/4240 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-2491
https://notcve.org/view.php?id=CVE-2007-2491
04 May 2007 — The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337. El subsitema de administración de alimentación PIIX4 en EMC VMware Workstation 5.5.3.34685 y VMware Server 1.0.1.29996 permite a usuarios locales escribir en posiciones de memoria de su elecci... • http://osvdb.org/40088 •
CVSS: 7.8EPSS: 7%CPEs: 1EXPL: 0CVE-2007-1337
https://notcve.org/view.php?id=CVE-2007-1337
02 May 2007 — The virtual machine process (VMX) in VMware Workstation before 5.5.4 does not properly read state information when moving from the ACPI sleep state to the run state, which allows attackers to cause a denial of service (virtual machine reboot) via unknown vectors. El proceso de máquina virtual (VMX) en VMware Workstation anterior a 5.5.4 no lee adecuadamente la informaci´no de estado cuando pasa del estado ACPI de suspensión a ejecución, lo cual permite a atacantes remotos provocar una denegación de servicio... • http://osvdb.org/35508 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2007-1744
https://notcve.org/view.php?id=CVE-2007-1744
02 May 2007 — Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface. Vulnerabilidad de salto de directorio en la característica Shared Folders para VMware Workstation anterior 5.5.4, cuando una carpeta es compartida, permite a usuarios sobre el sistema invitado escribir archivos de su elección sobre sistema host a través de la interfa... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521 •