CVE-2007-0063 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-0063
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-0063

Description: Integer underflow in the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed DHCP packet that triggers a stack-based buffer overflow.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/33103 UBUNTU http://www.ubuntu.com/usn/usn-543-1 ST 1018717 SAID Secunia Advisory: SA26890 Secunia Advisory: SA27694 Secunia Advisory: SA27706 ISS http://www.iss.net/threats/275.html GENTOO http://security.gentoo.org/glsa/glsa-200711-23.xml FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html CONFIRM http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html http://www.vmware.com/support/server/doc/releasenotes_server.html http://www.vmware.com/support/player/doc/releasenotes_player.html http://www.vmware.com/support/player2/doc/releasenotes_player2.html http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html http://www.vmware.com/support/ace/doc/releasenotes_ace.html BID 25729

Return to the previous page.