171 matches found
VMware Tools 3.1 - HGFS.Sys Local Privilege Escalation
VMware Tools 3.1 - HGFS.Sys Local Privilege Escalation // source: https://www.securityfocus.com/bid/26556/info VMware Tools is prone to a privilege-escalation vulnerability. The application fails to properly drop privileges before performing certain functions. An attacker can exploit this in the...
Microsoft Security Bulletin MS07-049 - Important Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986)
Microsoft Security Bulletin MS07-049 - Important Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege 937986 Published: August 14, 2007 Version: 1.0 General Information Executive Summary This important security update resolves one privately reported vulnerability. Thi...
Heap overflow
Heap-based buffer overflow in the bxne2kc::rxframe function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register...
CVE-2007-2893
Heap-based buffer overflow in the bxne2kc::rxframe function in iodev/ne2k.cc in the emulated NE2000 device in Bochs 2.3 allows local users of the guest operating system to write to arbitrary memory locations and gain privileges on the host operating system via vectors that cause TXCNT register...
Heap overflow
Heap-based buffer overflow in the VGA device in Parallels allows local users, with root access to the guest operating system, to terminate the virtual machine and possibly execute arbitrary code in the host operating system via unspecified vectors related to bitblt operations...
Design/Logic Flaw
The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE...
CVE-2007-0998
The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE...
HVM guest VNC server allows compromise of entire host OS by any VNC console user
The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE...
Parallels - Drag and Drop Hidden Share
Parallels - Drag and Drop Hidden Share source: https://www.securityfocus.com/bid/22597/info Parallels is prone to an arbitrary code-execution vulnerability because of a design flaw in the affected application. An attacker can exploit this issue to create files in the host operating system. This...
Parallels - Drag and Drop Hidden Share
source: https://www.securityfocus.com/bid/22597/info Parallels is prone to an arbitrary code-execution vulnerability because of a design flaw in the affected application. An attacker can exploit this issue to create files in the host operating system. This could result in the execution of code...
PT-2013-6340 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.13.10 Description: The issue allows guest OS users to cause a denial of service or possibly gain privileges on the host OS via crafted packets. This is related to the handle rx and get rx bufs functions in the...