Lucene search

K
cve[email protected]CVE-2006-3547
HistoryJul 13, 2006 - 12:05 a.m.

CVE-2006-3547

2006-07-1300:05:00
web.nvd.nist.gov
20
emc
vmware
player
dos
denial of service
ide1:0.filename
.vmx file
virtual machine
nvd
cve-2006-3547

6.9 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.3%

EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machine. NOTE: third parties have disputed this issue, saying that write access to the .vmx file enables other ways of stopping the virtual machine, so no privilege boundaries are crossed

Affected configurations

NVD
Node
vmwareplayer
CPENameOperatorVersion
vmware:playervmware playereq*

6.9 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

70.3%

Related for CVE-2006-3547