g_

4 exploits Active since Aug 2008
CVE-2008-3761 EXPLOITDB text WORKING POC
VMware Workstation 6.5.1 - Denial of Service via IOCTL Request
hcmon.sys in VMware Workstation 6.5.1 and earlier, VMware Player 2.5.1 and earlier, VMware ACE 2.5.1 and earlier, and VMware Server 1.0.x before 1.0.9 build 156507 and 2.0.x before 2.0.1 build 156745 uses the METHOD_NEITHER communication method for IOCTLs, which allows local users to cause a denial of service via a crafted IOCTL request.
CVE-2008-7107 EXPLOITDB text WORKING POC
ESET Smart Security 3.0.667.0 - Denial of Service via IOCTL Request to easdrv.sys
easdrv.sys in ESET Smart Security 3.0.667.0 allows local users to cause a denial of service (crash) via a crafted IOCTL 0x222003 request to the \\.\easdrv device interface.
CVE-2008-3732 EXPLOITDB text WRITEUP
VLC Media Player <0.8.6i - Buffer Overflow
Integer overflow in the Open function in modules/demux/tta.c in VLC Media Player 0.8.6i allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TTA file, which triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
CVE-2008-3794 EXPLOITDB text WORKING POC
VLC Media Player 0.8.6i - Remote Code Execution via Crafted MMST Link
Integer signedness error in the mms_ReceiveCommand function in modules/access/mms/mmstu.c in VLC Media Player 0.8.6i allows remote attackers to execute arbitrary code via a crafted mmst link with a negative size value, which bypasses a size check and triggers an integer overflow followed by a heap-based buffer overflow.