Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-4497

Unspecified vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows users with login access to a guest operating system to cause a denial of service (guest outage and host process crash or hang) via unspecified vectors.

Related bugs and status

CVE-2007-4497 (Candidate) is related to these bugs:

Bug #163826: [vmware-player] guest operating systems might be able to execute arbitrary code with elevated privileges on host's os

Summary				In	Importance	Status
	163826	[vmware-player] guest operating systems might be able to execute arbitrary code with elevated privileges on host's os		vmware-player (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
CONFIRM: http://www.vmware.com/...
BID: 25731
SECTRACK: 1018718
FULLDISC: 20070920 VMSA-2007-000...
SECUNIA: 26890
UBUNTU: USN-543-1
SECUNIA: 27694
GENTOO: GLSA-200711-23
SECUNIA: 27706
VUPEN: ADV-2007-3229