99 matches found
CVE-2009-1565
VMware VMnc VMnc codec/VMware Movie Decoder (Windows) is affected by CVE-2009-1565. The issue arises from heap-based buffer overflows triggered by crafted HexTile-encoded video chunks in AVI files, enabling remote code execution. Affected products include VMware Movie Decoder before 6.5.4 Build 2...
Cross site scripting
Cross-site scripting XSS vulnerability in WebAccess in VMware Server 2.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to JSON error messages...
CVE-2010-1193
CVE-2010-1193 is a Cross-site Scripting (XSS) vulnerability in VMware WebAccess for VMware Server 2.0. The issue arises from improper handling of JSON error messages, enabling an attacker to inject arbitrary script/HTML when a user is enticed to click a crafted link. The vulnerability is part of ...
CVE-2010-1193
Cross-site scripting XSS vulnerability in WebAccess in VMware Server 2.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to JSON error messages...
VMSA-2010-0005 VMware products address vulnerabilities in WebAccess
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Security Advisory Advisory ID: VMSA-2010-0005 Synopsis: VMware products address vulnerabilities in WebAccess Issue date: 2010-03-29 Updated on: 2010-03-29 initial releas...
VMware Server Multiple Cross-Site Scripting Vulnerabilities (Windows)
This host is installed with VMWare Server that is vulnerable to multiple Cross-Site Scripting vulnerabilities. OpenVAS Vulnerability Test $Id: secpodvmwareservermultxssvulndec09win.nasl 6518 2017-07-04 13:49:06Z cfischer $ VMware Server Multiple Cross-Site Scripting Vulnerabilities Windows Author...
CVE-2009-3731
Multiple cross-site scripting XSS vulnerabilities in WebWorks Help 2.0 through 5.0 in VMware vCenter 4.0 before Update 1 Build 208156; VMware Server 2.0.2; VMware ESX 4.0; VMware Lab Manager 2.x; VMware vCenter Lab Manager 3.x and 4.x before 4.0.1; VMware Stage Manager 1.x before 4.0.1; WebWorks...
VMware Server ISAPI Extension Remote Denial Of Service (CVE-2008-3697)
The VMware server is a server virtualization platform that allows a single physical server to run multiple virtual machines simultaneously. The server provides a web-based management interface called VMware Management Console. For VMware server hosted on windows servers, the IIS server is used to...
VMware Products Guest Privilege Escalation Vulnerability - Nov09 (Linux)
The host is installed with VMWare products and is prone to Privilege Escalation vulnerability. OpenVAS Vulnerability Test $Id: gbvmwareprdtsprivescvulnnov09lin.nasl 4906 2017-01-02 13:06:55Z teissa $ VMware Products Guest Privilege Escalation Vulnerability - Nov09 Linux Authors: Sharath S...
VMware Products Guest Privilege Escalation Vulnerability - Nov09 (Windows)
The host is installed with VMWare products and is prone to Privilege Escalation vulnerability. OpenVAS Vulnerability Test $Id: gbvmwareprdtsprivescvulnnov09win.nasl 4906 2017-01-02 13:06:55Z teissa $ VMware Products Guest Privilege Escalation Vulnerability - Nov09 Windows Authors: Sharath S...
VMware Products Guest Privilege Escalation Vulnerability (Nov 2009) - Linux
VMWare products are prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSquare Exploit Pack: D2SEC_VMWARE_DIRTRAV
Name| d2secvmwaredirtrav ---|--- CVE| CVE-2009-3733 Exploit Pack| D2ExploitPack Description| VmWare Server Directory Traversal Notes|...
DSquare Exploit Pack: D2SEC_VMWARE
Name| d2secvmware ---|--- CVE| CVE-2009-3733 Exploit Pack| D2ExploitPack Description| VmWare Server Directory Traversal Notes|...
CVE-2009-3733
CVE-2009-3733 describes a directory traversal vulnerability in VMware Server 1.x (before 1.0.10 build 203137) and 2.x (before 2.0.2 build 203138) on Linux, plus VMware ESXi 3.5 and VMware ESX 3.0.3/3.5. The issue allows remote attackers to read arbitrary files via unspecified vectors. Connected s...
PT-2009-4703
Name of the Vulnerable Software and Affected Versions VMware Workstation versions 6.5.x through 6.5.3 build 185404 VMware Player versions 2.5.x through 2.5.3 build 185404 VMware ACE versions 2.5.x through 2.5.3 build 185404 VMware Server versions 1.x through 1.0.10 build 203137 VMware Server...
PT-2009-5987 · Vmware · Vmware Esxi +1
Name of the Vulnerable Software and Affected Versions: VMware Server versions 1.x through 1.0.9 and 2.x through 2.0.1 VMware ESXi version 3.5 VMware ESX versions 3.0.3 and 3.5 Description: A directory traversal issue allows remote attackers to read arbitrary files via unspecified vectors...
Invalid #PF Exception Code in VMware can result in Guest Privilege Escalation
No description provided by source. Invalid PF Exception Code in VMware can result in Guest Privilege Escalation ----------------------------------------------------------------------------- In protected mode, cpl is usually equal to the two least significant bits of the cs register. However, ther...
VMware PF异常本地权限提升漏洞
BUGTRAQ ID: 36841 CVECAN ID: CVE-2009-2267 VMWare是一款虚拟PC软件,允许在一台机器上同时运行两个或多个Windows、DOS、LINUX系统。 在受保护的模式中,cpl通常等于cs寄存器最不重要的两位,但也有一个例外:在Virtual-8086模式中,无论cs寄存器为何值cpl总是为 3(最少权限)。当处理器出现PF异常时,会向包含有标记的栈上Push一个异常代码,操作系统使用这个标记确定正确地操作阶段。其中的一个标记为 U/S(user/supervisor),当处理器处于用户态时出现错误会设置这个标记。...
VMware Virtual 8086 - Linux Local Ring0
Bugtraq ID: 36841 Class: Design Error Published: Oct 27 2009 12:00AM Updated: Oct 27 2009 09:18PM Credit: Tavis Ormandy and Julien Tinnes of the Google Security Team Vulnerable: VMWare Workstation 6.5.3 VMWare Workstation 6.5.2 build 156735 VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare...
PT-2009-5966 · Vmware · Vmware Server +3
Name of the Vulnerable Software and Affected Versions: VMware Workstation versions 7.0 through 7.0.0 before build 227600 VMware Workstation version 6.5.x through 6.5.3 before build 246459 VMware Player versions 3.0 through 3.0.0 before build 227600 VMware Player version 2.5.x through 2.5.3 before...