Page 8 of 48 results (0.018 seconds)

CVSS: 5.8EPSS: 7%CPEs: 1EXPL: 1

CVE-2007-4059 – VMware 'IntraProcessLogging.dll' 5.5.3.42958 - Arbitrary Data Write

https://notcve.org/view.php?id=CVE-2007-4059

Absolute path traversal vulnerability in a certain ActiveX control in IntraProcessLogging.dll 5.5.3.42958 in EMC VMware allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SetLogFileName method. Vulnerabilidad de salto de directorio absoluto en cierto control ActiveX en IntraProcessLogging.dll 5.5.3.42958 en EMC VMware permite a atacantes remotos crear o sobrescribir archivos de su elección a través de un nombre de ruta completa en el argumento en el método SetLogFileName. • https://www.exploit-db.com/exploits/4240 http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html http://secunia.com/advisories/26890 http://www.securityfocus.com/bid/25110 http://www.vmware.com/support/ace/doc/releasenotes_ace.html http://www.vmware.com/support/player/doc/releasenotes_player.html http://www.vmware.com/support/player2/doc/releasenotes_player2.html http://www.vmware.com/support/server/doc/releasenotes_server.html http://www.vmware.com/support •

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

CVE-2007-2491

https://notcve.org/view.php?id=CVE-2007-2491

The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337. El subsitema de administración de alimentación PIIX4 en EMC VMware Workstation 5.5.3.34685 y VMware Server 1.0.1.29996 permite a usuarios locales escribir en posiciones de memoria de su elección mediante un escritura en memoria (poke) manipulada en el puerto de entrada/salida 0x1004, disparando una denegación de servicio (caída de máquina virtual) u otro impacto no especificado, tema relacionado en CVE-2007-1337. • http://osvdb.org/40088 http://taviso.decsystem.org/virtsec.pdf http://www.vupen.com/english/advisories/2007/1592 •

CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2007-1744

https://notcve.org/view.php?id=CVE-2007-1744

Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface. Vulnerabilidad de salto de directorio en la característica Shared Folders para VMware Workstation anterior 5.5.4, cuando una carpeta es compartida, permite a usuarios sobre el sistema invitado escribir archivos de su elección sobre sistema host a través de la interfaz "Puerto de puerta trasera de I/O". • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=521 http://secunia.com/advisories/25079 http://www.securityfocus.com/archive/1/467936/30/6690/threaded http://www.securityfocus.com/archive/1/469011/30/6510/threaded http://www.securityfocus.com/bid/23721 http://www.securitytracker.com/id?1017980 http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554 http://www.vupen.com/english/advisories/2007/1592 •

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

CVE-2007-1876

https://notcve.org/view.php?id=CVE-2007-1876

VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local users to "corrupt the virtual machine's register context" by debugging a local program and stepping into a "syscall instruction." MVware Workstation anterior a 5.5.4, cuando ejecuta Windows 64-bits como invitado en un anfitrión de 64 bits, permite a usuarios locales "corromper el contexto de registro de la máquina virtual" mediante la depuración de un programa local y el paso a una "instrucción de llamada al sistema" (syscall instruction). • http://osvdb.org/35509 http://secunia.com/advisories/25079 http://www.securityfocus.com/archive/1/467936/30/6690/threaded http://www.securityfocus.com/archive/1/469011/30/6510/threaded http://www.securityfocus.com/bid/23732 http://www.securitytracker.com/id?1018011 http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554 http://www.vupen.com/english/advisories/2007/1592 https://exchange.xforce.ibmcloud.com/vulnerabilities/33993 •

CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 0

CVE-2007-1877

https://notcve.org/view.php?id=CVE-2007-1877

VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS by causing the virtual machine process (VMX) to store malformed configuration information. La estación de trabajo VMware anterior a la 5.5.4 permite a atacantes remotos provocar una denegación de servicio contra el invitado OS haciendo que el proceso de la máquina virtual (VMX) almacene información de configuración mal formado. • http://secunia.com/advisories/25079 http://www.securityfocus.com/archive/1/467936/30/6690/threaded http://www.securityfocus.com/archive/1/469011/30/6510/threaded http://www.securityfocus.com/bid/23732 http://www.securitytracker.com/id?1018011 http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html#554 http://www.vupen.com/english/advisories/2007/1592 https://exchange.xforce.ibmcloud.com/vulnerabilities/33992 •