CVSS: 7.8EPSS: 6%CPEs: 1EXPL: 0CVE-2007-1069
https://notcve.org/view.php?id=CVE-2007-1069
02 May 2007 — The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service (Windows virtual machine crash) by triggering certain general protection faults (GPF). La gestión de memoria en VMware Workstation anterior a 5.5.4 permite a atacantes remotos provocar denegación de servicio (caida de la maquina virtual de windows)a través del disparo de ciertas averías generales de protección (GPF). • http://osvdb.org/35507 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2007-1876
https://notcve.org/view.php?id=CVE-2007-1876
02 May 2007 — VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local users to "corrupt the virtual machine's register context" by debugging a local program and stepping into a "syscall instruction." MVware Workstation anterior a 5.5.4, cuando ejecuta Windows 64-bits como invitado en un anfitrión de 64 bits, permite a usuarios locales "corromper el contexto de registro de la máquina virtual" mediante la depuración de un programa local y el paso a una "instrucción de llamada al ... • http://osvdb.org/35509 •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1877
https://notcve.org/view.php?id=CVE-2007-1877
02 May 2007 — VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS by causing the virtual machine process (VMX) to store malformed configuration information. La estación de trabajo VMware anterior a la 5.5.4 permite a atacantes remotos provocar una denegación de servicio contra el invitado OS haciendo que el proceso de la máquina virtual (VMX) almacene información de configuración mal formado. • http://secunia.com/advisories/25079 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-1056
https://notcve.org/view.php?id=CVE-2007-1056
21 Feb 2007 — VMware Workstation 5.5.3 build 34685 does not provide per-user restrictions on certain privileged actions, which allows local users to perform restricted operations such as changing system time, accessing hardware components, and stopping the "VMware tools service" service. NOTE: exploitation is simplified via (1) weak file permissions (Users = Read & Execute) for %PROGRAMFILES%\VMware; and weak registry key permissions (access by Users) for (2) vmmouse, (3) vmscsi, (4) VMTools, (5) vmx_svga, and (6) vmxnet... • http://osvdb.org/45244 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-0833
https://notcve.org/view.php?id=CVE-2007-0833
07 Feb 2007 — VMware Workstation 5.5.3 34685, when the "Enable copy and paste to and from this virtual machine" option is enabled, preserves clipboard data on the guest operating system after it was deleted on the host operating system, which might allow local users to read clipboard contents by moving the focus back to the host operating system. VMware Workstation 5.5.3 34685, cuando la opción "habilitar cortar y pegar desde y hacia esta máquina virtual" ("Enable copy and paste to and from this virtual machine") está ha... • http://osvdb.org/33221 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-0832
https://notcve.org/view.php?id=CVE-2007-0832
07 Feb 2007 — VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox is changed, which allows local users to obtain sensitive information or conduct certain attacks that are facilitated by weaker isolation between the host and guest operating systems. VMware Workstation 5.5.3 34685 no cambia inmediatamente la disponibilidad de un porta papeles compartido cuando se cambia el check en el "habilitar cortar y... • http://osvdb.org/33222 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2006-6410 – VMware 5.5.1 - 'ActiveX' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-6410
10 Dec 2006 — Buffer overflow in an ActiveX control in VMWare 5.5.1 allows local users to execute arbitrary code via a long VmdbDb parameter to the Initialize function. Desbordamiento de búfer en un control ActiveX en VMWare 5.5.1 permite a atacantes locales ejecutar código de su elección mediante un parámetro largo VmdbDb en la función Initialize. • https://www.exploit-db.com/exploits/2264 •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2006-3589
https://notcve.org/view.php?id=CVE-2006-3589
19 Jul 2006 — vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key. vmware-config.pl en VMware for Linux, ESX Server 2.x, y Infrastructure 3 no valida el código de retorno desde la llamada a la función Perl chmod, lo cual podría permitir un fichero llave SSL sea creado con una umask no segura que permite a usuarios ... • http://kb.vmware.com/kb/2467205 •
CVSS: 10.0EPSS: 52%CPEs: 20EXPL: 1CVE-2005-4459
https://notcve.org/view.php?id=CVE-2005-4459
21 Dec 2005 — Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands. • http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040442.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2939
https://notcve.org/view.php?id=CVE-2005-2939
18 Nov 2005 — Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder. • http://securitytracker.com/id?1015225 •