VMware IntraProcessLogging.DLL ActiveX Control Arbitrary File Overwrite Vulnerability

Bugtraq ID: 25110
Class: Design Error
CVE: CVE-2007-4059
Remote: Yes
Local: No
Published: Jul 28 2007 12:00AM
Updated: Sep 20 2007 07:00PM
Credit: callAX, and the GOODFELLAS Security Research TEAM discovered this vulnerability.
Vulnerable: VMWare Workstation 6.0
VMWare Workstation 5.5.4 build 44386
VMWare Workstation 5.5.4
VMWare Workstation 5.5.3 build 42958
VMWare Workstation 5.5.3 build 34685
VMWare Workstation 4.5.2
VMWare Server 1.0.3
VMWare Player 2.0
VMWare Player 1.0.4
VMWare ACE 2.0
VMWare ACE 1.0.3
Not Vulnerable: VMWare Workstation 6.0.1
VMWare Workstation 5.5.5
VMWare Server 1.0.4
VMWare Player 2.0.1
VMWare Player 1.0.5
VMWare ACE 2.0.1
VMWare ACE 1.0.4


 

Privacy Statement
Copyright 2010, SecurityFocus