CVE-2009-0177

VMware Workstation/Player/ACE/Server/Fusion DoS via Long USER/PASS Command

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0177. PoCs published by laurent gaffiÃ©.

AI-analyzed exploit summary This exploit targets a denial of service vulnerability in VMware's vmware-authd service by sending an overly long username, causing the service to crash. The PoC is a simple Python script that connects to the service and sends a malformed USER command.

Description

vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 2.0.x before 2.0.1 build 156745; and VMware Fusion before 2.0.2 build 147997 allows remote attackers to cause a denial of service (daemon crash) via a long (1) USER or (2) PASS command.

Exploits (1)

exploitdb WORKING POC VERIFIED

by laurent gaffiÃ© · textdosmultiple

https://www.exploit-db.com/exploits/7647

View Code ZIP pw:eip

This exploit targets a denial of service vulnerability in VMware's vmware-authd service by sending an overly long username, causing the service to crash. The PoC is a simple Python script that connects to the service and sends a malformed USER command.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: VMware Player/Workstation <= 2.5.1 build-126130

No auth needed

Prerequisites: Network access to the target's vmware-authd service (port 912)

MITRE ATT&CK