CVE-2007-5617 — HIGH (10.0)

Q: How severe is CVE-2007-5617?

CVE-2007-5617 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2007-5617?

Check the references section above for vendor advisories and patch information. Affected products include: Vmware Player, Vmware Workstation.

Vulnerability Description

Unspecified vulnerability in VMware Player 1.0.x before 1.0.5 and 2.0 before 2.0.1, and Workstation 5.x before 5.5.5 and 6.x before 6.0.1, prevents it from launching, which has unspecified impact, related to untrusted virtual machine images.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Vmware	Player	>= 1.0.0, < 1.0.5
Vmware	Workstation	>= 5.5, < 5.5.5

References

http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.htmlThird Party Advisory
http://secunia.com/advisories/26890Third Party Advisory
http://secunia.com/advisories/27706Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-23.xmlThird Party Advisory
http://www.vmware.com/support/player/doc/releasenotes_player.htmlPatchVendor Advisory
http://www.vmware.com/support/player2/doc/releasenotes_player2.htmlPatchVendor Advisory
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.htmlPatchVendor Advisory
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.htmlPatchVendor Advisory
http://www.vupen.com/english/advisories/2007/3229Third Party Advisory
http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.htmlThird Party Advisory
http://secunia.com/advisories/26890Third Party Advisory
http://secunia.com/advisories/27706Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-23.xmlThird Party Advisory
http://www.vmware.com/support/player/doc/releasenotes_player.htmlPatchVendor Advisory
http://www.vmware.com/support/player2/doc/releasenotes_player2.htmlPatchVendor Advisory

FAQ

What is CVE-2007-5617?

CVE-2007-5617 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in VMware Player 1.0.x before 1.0.5 and 2.0 before 2.0.1, and Workstation 5.x before 5.5.5 and 6.x before 6.0.1, prevents it from launching, which has unspecified impact, rel...

How severe is CVE-2007-5617?

CVE-2007-5617 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-5617?

Check the references section above for vendor advisories and patch information. Affected products include: Vmware Player, Vmware Workstation.