CVE-2007-4155

CVE-2007-4155 is a Windows-hosted vulnerability in VMware’s vielib.dll (ActiveX) that enables absolute path traversal to trigger CreateProcess/CreateProcessEx, allowing remote attackers to execute arbitrary local programs on VMware Workstation/Player 6.0.0 family. VMware advisories (VMSA-2007-000...

CVE-2007-4058

CVE-2007-4058 is described as an Absolute Path Traversal in the VMware vielib.dll ActiveX (StartProcess) in VMware Workstation/6.0.0, allowing remote execution of arbitrary commands when a user loads attacker-controlled content. Affected component is the vielib.dll ActiveX control; trigger involv...