Lucene search

MitreCVE-2009-0177

HistoryJan 20, 2009 - 4:00 p.m.

CVE-2009-0177

2009-01-2016:00:09

CWE-399

mitre

web.nvd.nist.gov

cve-2009-0177

vmwarebase.dll

vmware-authd service

denial of service

remote attackers

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.069

Percentile

94.0%

JSON

vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 2.0.x before 2.0.1 build 156745; and VMware Fusion before 2.0.2 build 147997 allows remote attackers to cause a denial of service (daemon crash) via a long (1) USER or (2) PASS command.

Affected configurations

Nvd

Node

vmwareaceRange≤2.5.1

vmwareaceMatch2.5.0

vmwarefusionRange≤2.0.1

vmwareserverMatch2.0.0

vmwarevmware_playerRange≤2.5.1

vmwarevmware_playerMatch1.0.0

vmwarevmware_playerMatch1.0.1

vmwarevmware_playerMatch1.0.2

vmwarevmware_playerMatch1.0.3

vmwarevmware_playerMatch1.0.4

vmwarevmware_playerMatch1.0.6

vmwarevmware_playerMatch1.0.7

vmwarevmware_playerMatch1.0.8

vmwarevmware_playerMatch1.0.9

vmwarevmware_playerMatch1.05

vmwarevmware_playerMatch2.0

vmwarevmware_playerMatch2.0.1

vmwarevmware_playerMatch2.0.2

vmwarevmware_playerMatch2.0.3

vmwarevmware_playerMatch2.0.4

vmwarevmware_playerMatch2.0.5

vmwarevmware_playerMatch2.5

vmwarevmware_workstationRange≤6.51

vmwarevmware_workstationMatch4.5.3

vmwarevmware_workstationMatch5.0

vmwarevmware_workstationMatch5.5.0

vmwarevmware_workstationMatch5.5.1

vmwarevmware_workstationMatch5.5.2

vmwarevmware_workstationMatch5.5.3

vmwarevmware_workstationMatch5.5.4

vmwarevmware_workstationMatch5.5.5

vmwarevmware_workstationMatch5.5.6

vmwarevmware_workstationMatch5.5.7

vmwarevmware_workstationMatch5.5.8

vmwarevmware_workstationMatch6.0

vmwarevmware_workstationMatch6.0.1

vmwarevmware_workstationMatch6.0.2

vmwarevmware_workstationMatch6.0.3

vmwarevmware_workstationMatch6.0.4

vmwarevmware_workstationMatch6.0.5

vmwarevmware_workstationMatch6.5

VendorProductVersionCPE
vmwareace*cpe:2.3:a:vmware:ace:*:*:*:*:*:*:*:*
vmwareace2.5.0cpe:2.3:a:vmware:ace:2.5.0:*:*:*:*:*:*:*
vmwarefusion*cpe:2.3:a:vmware:fusion:*:*:*:*:*:*:*:*
vmwareserver2.0.0cpe:2.3:a:vmware:server:2.0.0:*:*:*:*:*:*:*
vmwarevmware_player*cpe:2.3:a:vmware:vmware_player:*:*:*:*:*:*:*:*
vmwarevmware_player1.0.0cpe:2.3:a:vmware:vmware_player:1.0.0:*:*:*:*:*:*:*
vmwarevmware_player1.0.1cpe:2.3:a:vmware:vmware_player:1.0.1:*:*:*:*:*:*:*
vmwarevmware_player1.0.2cpe:2.3:a:vmware:vmware_player:1.0.2:*:*:*:*:*:*:*
vmwarevmware_player1.0.3cpe:2.3:a:vmware:vmware_player:1.0.3:*:*:*:*:*:*:*
vmwarevmware_player1.0.4cpe:2.3:a:vmware:vmware_player:1.0.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
vmware	ace	*	cpe:2.3:a:vmware:ace::::::::
vmware	ace	2.5.0	cpe:2.3:a:vmware:ace:2.5.0:::::::*
vmware	fusion	*	cpe:2.3:a:vmware:fusion::::::::
vmware	server	2.0.0	cpe:2.3:a:vmware:server:2.0.0:::::::*
vmware	vmware_player	*	cpe:2.3:a:vmware:vmware_player::::::::
vmware	vmware_player	1.0.0	cpe:2.3:a:vmware:vmware_player:1.0.0:::::::*
vmware	vmware_player	1.0.1	cpe:2.3:a:vmware:vmware_player:1.0.1:::::::*
vmware	vmware_player	1.0.2	cpe:2.3:a:vmware:vmware_player:1.0.2:::::::*
vmware	vmware_player	1.0.3	cpe:2.3:a:vmware:vmware_player:1.0.3:::::::*
vmware	vmware_player	1.0.4	cpe:2.3:a:vmware:vmware_player:1.0.4:::::::*