Follow @discotekdotca
CVE-2007-0061
Current Description
The DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed packet that triggers "corrupt stack memory."
Basic Data
| Published | September 21, 2007 |
|---|---|
| Last Modified | July 16, 2019 |
| Assigner | cve@mitre.org |
| Data Type | CVE |
| Data Format | MITRE |
| Data Version | 4.0 |
| Problem Type | CWE-119 |
| CVE Data Version | 4.0 |
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| CVSS 2 - Access Vector | NETWORK |
| CVSS 2 - Access Complexity | LOW |
| CVSS 2 - Authentication | NONE |
| CVSS 2 - Confidentiality Impact | COMPLETE |
| CVSS 2 - Availability Impact | COMPLETE |
| CVSS 2 - Base Score | 10.0 |
| Severity | HIGH |
| Exploitability Score | 10.0 |
| Impact Score | 10.0 |
| Obtain All Privilege | true |
| Obtain User Privilege | false |
| Obtain Other Privilege | false |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 Application Vmware Ace * * * * * * * * 1.0 � � 1.0.3 2.3 Application Vmware Ace * * * * * * * * 2.0 � � 2.0.1 2.3 Application Vmware Player * * * * * * * * 1.0 � � 1.0.5 2.3 Application Vmware Player * * * * * * * * 2.0 � � 2.0.1 2.3 Application Vmware Server * * * * * * * * 1.0 � � 1.0.4 2.3 Application Vmware Workstation * * * * * * * * 5.5 � � 5.5.5 2.3 Application Vmware Workstation * * * * * * * * 6.0 � � 6.0.1 2.3 OS Vmware Esx 2.0.2 * * * * * * * � � � � 2.3 OS Vmware Esx 2.1.3 * * * * * * * � � � � 2.3 OS Vmware Esx 2.5.3 * * * * * * * � � � � 2.3 OS Vmware Esx 2.5.4 * * * * * * * � � � � 2.3 OS Vmware Esx 3.0.0 * * * * * * * � � � � 2.3 OS Vmware Esx 3.0.1 * * * * * * * � � � � -
OR - Configuration 2
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 OS Canonical Ubuntu Linux 6.06 * * * lts * * * � � � � 2.3 OS Canonical Ubuntu Linux 6.10 * * * * * * * � � � � 2.3 OS Canonical Ubuntu Linux 7.04 * * * * * * * � � � �
Vulnerable Software List
| Vendor | Product | Versions |
|---|---|---|
| Canonical | Ubuntu Linux | 6.06, 6.10, 7.04 |
| Vmware | Workstation | * |
| Vmware | Esx | 2.0.2, 2.1.3, 2.5.3, 2.5.4, 3.0.0, 3.0.1 |
| Vmware | Server | * |
| Vmware | Ace | * |
| Vmware | Player | * |
References
| Name | Source | URL | Tags |
|---|---|---|---|
| 20070920 VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player | http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html | FULLDISC | Third Party Advisory |
| 26890 | http://secunia.com/advisories/26890 | SECUNIA | Third Party Advisory |
| 27694 | http://secunia.com/advisories/27694 | SECUNIA | Third Party Advisory |
| 27706 | http://secunia.com/advisories/27706 | SECUNIA | Third Party Advisory |
| GLSA-200711-23 | http://security.gentoo.org/glsa/glsa-200711-23.xml | GENTOO | Third Party Advisory |
| 20070919 VMWare DHCP Server Remote Code Execution Vulnerabilities | http://www.iss.net/threats/275.html | ISS | Patch Third Party Advisory |
| 25729 | http://www.securityfocus.com/bid/25729 | BID | Patch Third Party Advisory VDB Entry |
| 1018717 | http://www.securitytracker.com/id?1018717 | SECTRACK | Third Party Advisory VDB Entry |
| USN-543-1 | http://www.ubuntu.com/usn/usn-543-1 | UBUNTU | Third Party Advisory |
| http://www.vmware.com/support/ace/doc/releasenotes_ace.html | http://www.vmware.com/support/ace/doc/releasenotes_ace.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html | http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/player/doc/releasenotes_player.html | http://www.vmware.com/support/player/doc/releasenotes_player.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/player2/doc/releasenotes_player2.html | http://www.vmware.com/support/player2/doc/releasenotes_player2.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/server/doc/releasenotes_server.html | http://www.vmware.com/support/server/doc/releasenotes_server.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html | http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html | CONFIRM | Patch Vendor Advisory |
| http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html | http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html | CONFIRM | Patch Vendor Advisory |
| ADV-2007-3229 | http://www.vupen.com/english/advisories/2007/3229 | VUPEN | Third Party Advisory |
| dhcp-malformed-packet-bo(33101) | https://exchange.xforce.ibmcloud.com/vulnerabilities/33101 | XF | VDB Entry |