CVE-2007-2491

3 documents3 sources
Severity
7.2HIGH
EPSS
0.0%
top 88.13%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware ServerVmware Workstation
Timeline
PublishedMay 4
Latest updateMay 1

Description

The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDvmware/server1.0.1_build_29996
NVDvmware/workstation5.5.3_build_34685

🔴Vulnerability Details

2
GHSA
GHSA-rf4c-m93m-m5w7: The PIIX4 power management subsystem in EMC VMware Workstation 52022-05-01
CVEList
CVE-2007-2491: The PIIX4 power management subsystem in EMC VMware Workstation 52007-05-04
CVE-2007-2491 (HIGH CVSS 7.2) | The PIIX4 power management subsyste | cvebase.io