Lucene search

[email protected]NVD:CVE-2006-3547

HistoryJul 13, 2006 - 12:05 a.m.

CVE-2006-3547

2006-07-1300:05:00

[email protected]

web.nvd.nist.gov

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.003

Percentile

70.3%

JSON

EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machine. NOTE: third parties have disputed this issue, saying that write access to the .vmx file enables other ways of stopping the virtual machine, so no privilege boundaries are crossed

Affected configurations

Nvd

Node

vmwareplayer

VendorProductVersionCPE
vmwareplayer*cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
vmware	player	*	cpe:2.3:a:vmware:player::::::::

References

www.osvdb.org/27524

www.securityfocus.com/archive/1/437756/100/200/threaded

www.securityfocus.com/archive/1/437806/100/200/threaded

www.securityfocus.com/archive/1/437809/100/200/threaded

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.003

Percentile

70.3%

JSON

Related for NVD:CVE-2006-3547

cve1 cvelist1