Vmware Workstation vulnerabilities

CVE-2007-4496 [MEDIUM] CWE-399 CVE-2007-4496: Unspecified vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Bu Unspecified vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows authenticated users with administrative privileges on a guest o

CVE-2007-4591 [MEDIUM] CVE-2007-4591: vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host opera vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode.

CVE-2007-4593 [MEDIUM] CVE-2007-4593: Unspecified vulnerability in vstor2-ws60.sys in VMWare Workstation 6.0 allows local users to cause a Unspecified vulnerability in vstor2-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) via unspecified vectors, as demonstrated by the DC2 test suite, possibly a related issue to CVE-2007-4591. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf

CVE-2007-4059 [MEDIUM] CVE-2007-4059: Absolute path traversal vulnerability in a certain ActiveX control in IntraProcessLogging.dll 5.5.3. Absolute path traversal vulnerability in a certain ActiveX control in IntraProcessLogging.dll 5.5.3.42958 in EMC VMware allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SetLogFileName method.

CVE-2007-2491 [HIGH] CVE-2007-2491: The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.2 The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337.

CVE-2007-1876 [HIGH] CVE-2007-1876: VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local VMware Workstation before 5.5.4, when running a 64-bit Windows guest on a 64-bit host, allows local users to "corrupt the virtual machine's register context" by debugging a local program and stepping into a "syscall instruction."

CVE-2007-1337 [HIGH] CVE-2007-1337: The virtual machine process (VMX) in VMware Workstation before 5.5.4 does not properly read state in The virtual machine process (VMX) in VMware Workstation before 5.5.4 does not properly read state information when moving from the ACPI sleep state to the run state, which allows attackers to cause a denial of service (virtual machine reboot) via unknown vectors.

CVE-2007-1877 [HIGH] CVE-2007-1877: VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS b VMware Workstation before 5.5.4 allows attackers to cause a denial of service against the guest OS by causing the virtual machine process (VMX) to store malformed configuration information.

CVE-2007-1069 [HIGH] CVE-2007-1069: The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of servi The memory management in VMware Workstation before 5.5.4 allows attackers to cause a denial of service (Windows virtual machine crash) by triggering certain general protection faults (GPF).

CVE-2007-1744 [MEDIUM] CVE-2007-1744: Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, Directory traversal vulnerability in the Shared Folders feature for VMware Workstation before 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.

CVE-2007-1056 [HIGH] CWE-264 CVE-2007-1056: VMware Workstation 5.5.3 build 34685 does not provide per-user restrictions on certain privileged ac VMware Workstation 5.5.3 build 34685 does not provide per-user restrictions on certain privileged actions, which allows local users to perform restricted operations such as changing system time, accessing hardware components, and stopping the "VMware tools service" service. NOTE: exploitation is simplified via (1) weak file permissions (Users = Read & E

CVE-2007-0832 [LOW] CVE-2007-0832: VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard wh VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox is changed, which allows local users to obtain sensitive information or conduct certain attacks that are facilitated by weaker isolation between the host and guest operating systems.

CVE-2007-0833 [LOW] CVE-2007-0833: VMware Workstation 5.5.3 34685, when the "Enable copy and paste to and from this virtual machine" op VMware Workstation 5.5.3 34685, when the "Enable copy and paste to and from this virtual machine" option is enabled, preserves clipboard data on the guest operating system after it was deleted on the host operating system, which might allow local users to read clipboard contents by moving the focus back to the host operating system.

CVE-2006-6410 [MEDIUM] CVE-2006-6410: Buffer overflow in an ActiveX control in VMWare 5.5.1 allows local users to execute arbitrary code v Buffer overflow in an ActiveX control in VMWare 5.5.1 allows local users to execute arbitrary code via a long VmdbDb parameter to the Initialize function.

CVE-2006-3589 [LOW] CVE-2006-3589: vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return vmware-config.pl in VMware for Linux, ESX Server 2.x, and Infrastructure 3 does not check the return code from a Perl chmod function call, which might cause an SSL key file to be created with an unsafe umask that allows local users to read or modify the SSL key.

CVE-2005-4459 [CRITICAL] CWE-119 CVE-2005-4459: Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Works Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands.

CVE-2005-2939 [HIGH] CVE-2005-2939: Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder.

CVE-2005-0444 [MEDIUM] CVE-2005-0444: VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the VMware before 4.5.2.8848-r5 searches for gdk-pixbuf shared libraries using a path that includes the rrdharan world-writable temporary directory, which allows local users to execute arbitrary code.

CVE-2004-2515 [HIGH] CVE-2004-2515: Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privile Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privileges, might allow local users to execute arbitrary code via format string specifiers in command line arguments. NOTE: it is not clear if there are any default or typical circumstances under which VMware would be running with privileges beyond those already availab

CVE-2003-0739 [MEDIUM] CVE-2003-0739: VMware Workstation 4.0.1 for Linux, build 5289 and earlier, allows local users to delete arbitrary f VMware Workstation 4.0.1 for Linux, build 5289 and earlier, allows local users to delete arbitrary files via a symlink attack.