CVE-2007-5438
VMware ACE - Denial of Service via Reconfig.DLL ConnectPopulatedDiskEx Function
Title source: llmDescription
Unspecified vulnerability in a certain ActiveX control in Reconfig.DLL in VMware Workstation 5.5.x before 5.5.8 build 108000, VMware Workstation 6.0.x before 6.0.5 build 109488, VMware Player 1.x before 1.0.8 build 108000, VMware Player 2.x before 2.0.5 build 109488, VMware ACE 1.x before 1.0.7 build 108880, VMware ACE 2.x before 2.0.5 build 109488, and VMware Server before 1.0.7 build 108231 might allow local users to cause a denial of service to the Virtual Disk Mount Service (vmount2.exe), related to the ConnectPopulatedDiskEx function.
References (21)
Core 21
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/43488
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/3219
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2008-0014.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31709
Various Sources x_refsource_misc
http://www.eleytt.com/advisories/eleytt_VMWARE1.pdf
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/server/doc/releasenotes_server.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1020791
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/player2/doc/releasenotes_player2.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31710
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/482021/100/0/threaded
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/ace/doc/releasenotes_ace.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/player/doc/releasenotes_player.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26025
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/495869/100/0/threaded
Mailing List mailing-list
x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31707
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31708
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/2466
Scores
EPSS
0.0010
EPSS Percentile
27.1%
Details
CWE
CWE-20
Status
published
Products (50)
vmware/ace
1.0
vmware/ace
1.0.1
vmware/ace
1.0.2
vmware/ace
1.0.3
vmware/ace
1.0.4
vmware/ace
1.0.5
vmware/ace
1.0.6
vmware/ace
1.0.7
vmware/ace
2.0
vmware/ace
2.0.1
... and 40 more
Published
Oct 13, 2007
Tracked Since
Feb 18, 2026