CVE-2009-0177
CVE-2009-0177
vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 2.0.x before 2.0.1 build 156745; and VMware Fusion before 2.0.2 build 147997 allows remote attackers to cause a denial of service (daemon crash) via a long (1) USER or (2) PASS command.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/7647unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.vmware.com/pipermail/security-announce/2009/000054.htmlhttp://osvdb.org/51180http://seclists.org/fulldisclosure/2009/Apr/0036.htmlhttp://secunia.com/advisories/33372http://secunia.com/advisories/34601https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6433https://www.exploit-db.com/exploits/7647http://www.securityfocus.com/bid/34373http://www.securitytracker.com/id?1021512http://www.vmware.com/security/advisories/VMSA-2009-0005.htmlhttp://www.vupen.com/english/advisories/2009/0024http://www.vupen.com/english/advisories/2009/0944