Lucene search
K
VmwareVmware Workstation

15 matches found

CVE
CVE
added 2007/09/21 6:0 p.m.97 views

CVE-2007-0062

CVE-2007-0062: The vulnerability affects ISC DHCPD 3.0.x (before 3.0.7) and 3.1.x (before 3.1.1), plus the DHCP servers in VMware Workstation/Player, ACE, and related products. It is caused by a stack-based buffer overflow triggered by a malformed DHCP packet with a large dhcp-max-message-size, p...

10CVSS7.7AI score0.07618EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.85 views

CVE-2008-1361

The CVE-2008-1361 issue affects multiple VMware products (Workstation 6.0.x up to 6.0.3, 5.5.x up to 5.5.6; Player 2.0.x up to 2.0.3 and 1.0.x up to 1.0.6; ACE 2.0.x up to 2.0.1 and 1.0.x up to 1.0.5; Server 1.0.x up to 1.0.5 on Windows). The root cause is an unspecified manipulation that causes ...

6.8CVSS6.7AI score0.00347EPSS
CVE
CVE
added 2008/06/05 8:21 p.m.81 views

CVE-2007-5671

CVE-2007-5671 is a VMware Tools local privilege-escalation issue in the guest HGFS driver (HGFS.sys) present in VMware Workstation/Player/ACE/Server and ESX/ESXi components. The flaw arises from improper validation of arguments to user-mode IOCTLs to .\hgfs, enabling a guest user to modify kernel...

4.4CVSS6.8AI score0.00388EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.81 views

CVE-2008-1340

VMware VMCI vulnerability CVE-2008-1340 affects VMware Workstation 6.0.x prior to 6.0.3, VMware Player 2.0.x prior to 2.0.3, and VMware ACE 2.0.x prior to 2.0.1. The issue allows attackers to cause a denial of service (host OS crash) via crafted VMCI calls that trigger memory exhaustion and memor...

7.1CVSS6.3AI score0.01736EPSS
CVE
CVE
added 2008/02/26 12:0 a.m.80 views

CVE-2008-0923

CVE-2008-0923 is a directory traversal vulnerability in VMware’s Shared Folders feature (HGFS) that affects desktop products including VMware Workstation up to 6.0.2, Workstation 5.5.4, VMware Player 2.0.2 and 1.0.4, and VMware ACE 2.0.2 and 1.0.2 . The root cause is a mismatch between input vali...

6.9CVSS6.3AI score0.00486EPSS
CVE
CVE
added 2008/06/05 8:21 p.m.78 views

CVE-2008-0967

CVE-2008-0967 describes a local privilege escalation in vmware-authd due to an untrusted library search path. A local user can gain privileges by manipulating a library path option in a configuration file. Affected products include VMware Workstation 5.x (before 5.5.7 build 91707), VMware Worksta...

6.9CVSS6.7AI score0.00356EPSS
CVE
CVE
added 2008/06/02 2:0 p.m.75 views

CVE-2008-2098

The CVE-2008-2098 entry corresponds to a heap-based buffer overflow in VMware Host-Guest File System (HGFS) sharing. Affected products include VMware Workstation 6.x prior to 6.0.4 (build 93057), VMware Player 2.x prior to 2.0.4 (build 93057), VMware ACE 2.x prior to 2.0.2 (build 93057), and VMwa...

6.9CVSS7AI score0.00462EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.74 views

CVE-2008-1364

CVE-2008-1364 describes an unspecified vulnerability in the DHCP service across multiple VMware products (Workstation 5.5.x before 5.5.6, Player 1.0.x before 1.0.6, ACE 1.0.x before 1.0.5, Server 1.0.x before 1.0.5, Fusion 1.1.x before 1.1.1) that allows an attacker to cause a denial of service. ...

7.8CVSS6.3AI score0.0204EPSS
CVE
CVE
added 2009/04/06 3:0 p.m.74 views

CVE-2008-4916

CVE-2008-4916 describes a denial-of-service vulnerability in the guest virtual device driver that could crash the host OS. The issue affects VMware products including VMware Workstation (pre-5.5.9/6.x), VMware Player (pre-1.0.9/2.x), VMware ACE (pre-1.0.8/2.x), VMware Server (1.x before 1.0.8/2.0...

4.6CVSS6.1AI score0.00334EPSS
CVE
CVE
added 2009/01/20 3:26 p.m.72 views

CVE-2009-0177

CVE-2009-0177 is a remote denial-of-service vulnerability in the vmware-authd.exe daemon via excessively long USER or PASS commands. Public-availability details (from VMware VMSA-2009-0005) indicate the issue affects multiple VMware products prior to patched versions, including Workstation 6.5.x ...

5CVSS6.4AI score0.08642EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.71 views

CVE-2008-1362

CVE-2008-1362 affects VMware products (Workstation, Player, ACE, Server) on Windows. The vulnerability arises from insecurely created named pipes used by the authd process, allowing a local attacker to impersonate authd and gain privileges or cause a denial of service. Affected versions include V...

7.2CVSS6.6AI score0.0036EPSS
CVE
CVE
added 2007/10/13 1:0 a.m.68 views

CVE-2007-5438

CVE-2007-5438 involves an unspecified vulnerability in a VMware ActiveX control (Reconfig.DLL) that could allow local users to cause a denial of service to the Virtual Disk Mount Service (vmount2.exe). Affected products and build ranges include VMware Workstation 5.5.x <5.5.8 build 108000, Wor...

1.9CVSS6.3AI score0.00366EPSS
CVE
CVE
added 2008/08/21 5:0 p.m.68 views

CVE-2008-3761

CVE-2008-3761 affects VMware hosted products (e.g., Workstation 6.5.x and earlier, Player 2.5.x and earlier, ACE 2.5.x and earlier, Server 1.x/2.x prior to specific patches) via METHOD_NEITHER IOCTL handling in hcmon.sys, enabling local denial of service through a crafted IOCTL. Connected advisor...

4.9CVSS5.8AI score0.00995EPSS
CVE
CVE
added 2008/06/02 2:0 p.m.61 views

CVE-2008-2099

CVE-2008-2099 is a VMware VMCI/HGFS code‑execution vulnerability affecting VMware Workstation 6.x (before 6.0.4 build 93057), VMware Player 2.x (before 2.0.4 build 93057), and VMware ACE 2.x (before 2.0.2 build 93057) on Windows. A guest OS user could potentially execute arbitrary code on the hos...

6.9CVSS7.2AI score0.00405EPSS
CVE
CVE
added 2008/03/20 12:0 a.m.58 views

CVE-2008-1392

The CVE-2008-1392 issue affects VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1, where the guest OS console is reachable via anonymous VIX API calls. Impact is explicitly stated as unknown in the sources. Remediation noted in VMSA-2008-0005: the vulne...

10CVSS6.5AI score0.02734EPSS