CVE-2007-0062

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Integer overflow in the ISC dhcpd 3.0.x before 3.0.7 and 3.1.x before 3.1.1; and the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528; allows remote attackers to cause a denial of service (daemon crash) or execute arbitrary code via a malformed DHCP packet with a large dhcp-max-message-size that triggers a stack-based buffer overflow, related to servers configured to send many DHCP options to clients.

Un desbordamiento enteros en el dhcpd ISC versión 3.0.x anterior a 3.0.7 y versión 3.1.x anterior a 3.1.1; y el servidor DHCP en EMC VMware Workstation anterior a versión 5.5.5 Build 56455 y versión 6.x anterior a 6.0.1 Build 55017, Player anterior a versión 1.0.5 Build 56455 y Player 2 anterior a versión 2.0.1 Build 55017, ACE anterior a versión 1.0.3 Build 54075 y ACE 2 anterior a versión 2.0.1 Build 55017, y Server versión 1.0.4 56528; permite a los atacantes remotos causar una denegación de servicio (bloqueo del demonio) o ejecutar código arbitrario por medio de un paquete DHCP con formato inapropiado con un gran tamaño de mensaje máximo dhcp que desencadena un desbordamiento de búfer en la región stack de la memoria, relacionado con servidores configurados para enviar muchas opciones DHCP a clientes.

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-01-04 CVE Reserved
2007-09-20 CVE Published
2024-08-07 CVE Updated
2024-09-01 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-189: Numeric Errors

CAPEC

References (27)

URL	Tag	Source
http://bugs.gentoo.org/show_bug.cgi?id=227135	X_refsource_confirm
http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html	Mailing List
http://wiki.rpath.com/Advisories:rPSA-2009-0041	X_refsource_confirm
http://www.securityfocus.com/archive/1/501759/100/0/threaded	Mailing List
http://www.securitytracker.com/id?1018717	Vdb Entry
https://bugzilla.redhat.com/show_bug.cgi?id=339561	X_refsource_confirm
https://exchange.xforce.ibmcloud.com/vulnerabilities/33102	Vdb Entry

URL	Date	SRC

URL	Date	SRC
http://www.iss.net/threats/275.html	2018-10-16
http://www.securityfocus.com/bid/25729	2018-10-16
http://www.vmware.com/support/ace/doc/releasenotes_ace.html	2018-10-16
http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html	2018-10-16
http://www.vmware.com/support/player/doc/releasenotes_player.html	2018-10-16
http://www.vmware.com/support/player2/doc/releasenotes_player2.html	2018-10-16
http://www.vmware.com/support/server/doc/releasenotes_server.html	2018-10-16
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html	2018-10-16
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html	2018-10-16

URL	Date	SRC
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00000.html	2018-10-16
http://secunia.com/advisories/26890	2018-10-16
http://secunia.com/advisories/27694	2018-10-16
http://secunia.com/advisories/27706	2018-10-16
http://secunia.com/advisories/31396	2018-10-16
http://secunia.com/advisories/34263	2018-10-16
http://security.gentoo.org/glsa/glsa-200711-23.xml	2018-10-16
http://security.gentoo.org/glsa/glsa-200808-05.xml	2018-10-16
http://www.mandriva.com/security/advisories?name=MDVSA-2009:153	2018-10-16
http://www.ubuntu.com/usn/usn-543-1	2018-10-16
http://www.vupen.com/english/advisories/2007/3229	2018-10-16

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Vmware Search vendor "Vmware"		Ace Search vendor "Vmware" for product "Ace"				1.0.3 Search vendor "Vmware" for product "Ace" and version "1.0.3"		-		Affected
Vmware Search vendor "Vmware"		Ace Search vendor "Vmware" for product "Ace"				2.0 Search vendor "Vmware" for product "Ace" and version "2.0"		-		Affected
Vmware Search vendor "Vmware"		Player Search vendor "Vmware" for product "Player"				1.0.4 Search vendor "Vmware" for product "Player" and version "1.0.4"		-		Affected
Vmware Search vendor "Vmware"		Player Search vendor "Vmware" for product "Player"				2.0 Search vendor "Vmware" for product "Player" and version "2.0"		-		Affected
Vmware Search vendor "Vmware"		Server Search vendor "Vmware" for product "Server"				1.0.3 Search vendor "Vmware" for product "Server" and version "1.0.3"		-		Affected
Vmware Search vendor "Vmware"		Vmware Workstation Search vendor "Vmware" for product "Vmware Workstation"				6.0.1 Search vendor "Vmware" for product "Vmware Workstation" and version "6.0.1"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				3.4 Search vendor "Vmware" for product "Workstation" and version "3.4"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				4.0 Search vendor "Vmware" for product "Workstation" and version "4.0"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				4.0.1 Search vendor "Vmware" for product "Workstation" and version "4.0.1"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				4.0.2 Search vendor "Vmware" for product "Workstation" and version "4.0.2"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				4.5.2 Search vendor "Vmware" for product "Workstation" and version "4.5.2"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.0_build_13124 Search vendor "Vmware" for product "Workstation" and version "5.5.0_build_13124"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.1 Search vendor "Vmware" for product "Workstation" and version "5.5.1"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.1_build_19175 Search vendor "Vmware" for product "Workstation" and version "5.5.1_build_19175"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.3_build_34685 Search vendor "Vmware" for product "Workstation" and version "5.5.3_build_34685"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.3_build_42958 Search vendor "Vmware" for product "Workstation" and version "5.5.3_build_42958"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.4 Search vendor "Vmware" for product "Workstation" and version "5.5.4"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				5.5.4_build_44386 Search vendor "Vmware" for product "Workstation" and version "5.5.4_build_44386"		-		Affected
Vmware Search vendor "Vmware"		Workstation Search vendor "Vmware" for product "Workstation"				6.0 Search vendor "Vmware" for product "Workstation" and version "6.0"		-		Affected