Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-0910
HistoryApr 06, 2009 - 3:30 p.m.

CVE-2009-0910

2009-04-0615:30:04
CWE-119
[email protected]
web.nvd.nist.gov
34
cve-2009-0910
vnnc codec
vmware workstation
vmware player
vmware ace
vmware server
remote code execution
zdi-can-436

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.057 Low

EPSS

Percentile

93.4%

JSON

Heap-based buffer overflow in the VNnc Codec in VMware Workstation 6.5.x before 6.5.2 build 156735, VMware Player 2.5.x before 2.5.2 build 156735, VMware ACE 2.5.x before 2.5.2 build 156735, and VMware Server 2.0.x before 2.0.1 build 156745 allows remote attackers to execute arbitrary code via a crafted web page or video file, aka ZDI-CAN-436.

Affected configurations

NVD
Node
vmwareaceMatch2.5.1
OR
vmwareplayerMatch2.5.1
OR
vmwareserverMatch2.0
OR
vmwareworkstationMatch6.5.1

Related

securityvulns 3
nvd 1
prion 1
cvelist 1
openvas 6
nessus 3
seebug 2
vmware 1
gentoo 1
securityvulns
securityvulns
TPTI-09-02: VMWare VMnc Codec Open-DML Standard Index dwSize Heap Overflow
2009-04-08 00:00:00
VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues
2009-04-08 00:00:00
VMWare multiple security vulnerabilities
2009-04-12 00:00:00
nvd
nvd
CVE-2009-0910
2009-04-06 15:30:04
prion
prion
Heap overflow
2009-04-06 15:30:00
cvelist
cvelist
CVE-2009-0910
2009-04-06 15:00:00
openvas
openvas
VMware Products Multiple Vulnerabilities (VMSA-2009-0005, VMSA-2009-0006) - Linux
2009-05-18 00:00:00
VMware Products Multiple Vulnerabilities (VMSA-2009-0005, VMSA-2009-0006) - Windows
2009-05-18 00:00:00
VMware Products Multiple Vulnerabilities (Windows) Apr09
2009-05-18 00:00:00
nessus
nessus
VMSA-2009-0005 : VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues
2009-07-27 00:00:00
VMware Products Multiple Vulnerabilities (VMSA-2009-0005/VMSA-2009-0007)
2009-04-09 00:00:00
GLSA-201209-25 : VMware Player, Server, Workstation: Multiple vulnerabilities
2012-10-01 00:00:00
seebug
seebug
VMware宿主产品VMSA-2009-0005多个远程漏洞
2009-04-07 00:00:00
VMWare VMSA-2009-0005更新修复多个安全漏洞
2009-04-10 00:00:00
vmware
vmware
VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues
2009-04-03 00:00:00
gentoo
gentoo
VMware Player, Server, Workstation: Multiple vulnerabilities
2012-09-29 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

High

0.057 Low

EPSS

Percentile

93.4%

JSON
Related for CVE-2009-0910
securityvulns3nvd1prion1cvelist1openvas6nessus3seebug2vmware1gentoo1