VMware Workstation DHCP Server Multiple Remote Code Execution Vulnerabilities

Bugtraq ID:	25729
Class:	Design Error
CVE:	CVE-2007-0061 CVE-2007-0062 CVE-2007-0063
Remote:	Yes
Local:	No
Published:	Sep 17 2007 12:00AM
Updated:	Jul 17 2009 09:26PM
Credit:	Neel Mehta and Ryan Smith of the IBM Internet Security Systems X-Force are credited with the discovery of this vulnerability.
Vulnerable:	VMWare Workstation 6.0 VMWare Workstation 5.5.4 build 44386 VMWare Workstation 5.5.4 VMWare Workstation 5.5.3 build 42958 VMWare Workstation 5.5.3 build 34685 VMWare Workstation 4.5.2 VMWare VMWare Workstation 5.5.1 Build 19175 VMWare VMWare Workstation 5.5.1 VMWare VMWare Workstation 5.0 .0 build-13124 VMWare VMWare Workstation 4.5.2 VMWare VMWare Workstation 4.0.2 VMWare VMWare Workstation 4.0.1 VMWare VMWare Workstation 4.0 VMWare VMWare Workstation 3.4 VMWare VMWare Workstation 5.5.4 Build 44386 VMWare Server 1.0.3 VMWare Player 2.0 VMWare Player 1.0.4 VMWare ACE 2.0 VMWare ACE 1.0.3 Ubuntu Ubuntu Linux 7.04 sparc Ubuntu Ubuntu Linux 7.04 powerpc Ubuntu Ubuntu Linux 7.04 i386 Ubuntu Ubuntu Linux 7.04 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 S.u.S.E. SUSE Linux Enterprise Server 9 S.u.S.E. SUSE Linux Enterprise Server 10 S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.3 rPath rPath Linux 2 rPath rPath Linux 1 MandrakeSoft Multi Network Firewall 2.0 MandrakeSoft Linux Mandrake 2008.1 x86_64 MandrakeSoft Linux Mandrake 2008.1 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 Gentoo Linux

Not Vulnerable:	VMWare Workstation 6.0.1 VMWare Workstation 5.5.5 VMWare Server 1.0.4 VMWare Player 2.0.1 VMWare Player 1.0.5 VMWare ACE 2.0.1 VMWare ACE 1.0.4