Lucene search

PRIOn knowledge basePRION:CVE-2007-5438

HistoryOct 13, 2007 - 1:17 a.m.

Code injection

2007-10-1301:17:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.3%

JSON

Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 might allow local users to cause a denial of service to the Virtual Disk Mount Service (vmount2.exe), related to the ConnectPopulatedDiskEx function.

CPENameOperatorVersion
aceeq1.0
aceeq2.0.5
aceeq1.0.1
aceeq1.0.7
aceeq2.0.2
aceeq2.0
aceeq2.0.1
aceeq1.0.2
aceeq1.0.4
aceeq1.0.3

Name	Operator	Version
ace	eq	1.0
ace	eq	2.0.5
ace	eq	1.0.1
ace	eq	1.0.7
ace	eq	2.0.2
ace	eq	2.0
ace	eq	2.0.1
ace	eq	1.0.2
ace	eq	1.0.4
ace	eq	1.0.3

Rows per page:

1-10 of 521

References

lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html

osvdb.org/43488

secunia.com/advisories/31707

secunia.com/advisories/31708

secunia.com/advisories/31709

secunia.com/advisories/31710

securityreason.com/securityalert/3219

www.eleytt.com/advisories/eleytt_VMWARE1.pdf

www.securityfocus.com/archive/1/482021/100/0/threaded

www.securityfocus.com/archive/1/495869/100/0/threaded

www.securityfocus.com/bid/26025

www.securitytracker.com/id?1020791

www.vmware.com/security/advisories/VMSA-2008-0014.html

www.vmware.com/support/ace/doc/releasenotes_ace.html

www.vmware.com/support/ace2/doc/releasenotes_ace2.html

www.vmware.com/support/player/doc/releasenotes_player.html

www.vmware.com/support/player2/doc/releasenotes_player2.html

www.vmware.com/support/server/doc/releasenotes_server.html

www.vmware.com/support/ws55/doc/releasenotes_ws55.html

www.vmware.com/support/ws6/doc/releasenotes_ws6.html

www.vupen.com/english/advisories/2008/2466