CVE

Id
41142  
CVE No.
CVE-2009-3707  
Status
Candidate  
Description
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459, and VMware Server 2.x allows remote attackers to cause a denial of service (process crash) via a x25xFF sequence in the USER and PASS commands, related to a "format string DoS" issue. NOTE: some of these details are obtained from third party information.  
Phase
Assigned (20091016)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
451413 41142 CVE-2009-3707 BUGTRAQ:20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues  View
451414 41142 CVE-2009-3707 URL:http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html  View
451415 41142 CVE-2009-3707 FULLDISC:20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues  View
451416 41142 CVE-2009-3707 URL:http://archives.neohapsis.com/archives/fulldisclosure/2010-04/0121.html  View
451417 41142 CVE-2009-3707 MLIST:[security-announce] 20100409 VMSA-2010-0007 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues  View
451418 41142 CVE-2009-3707 URL:http://lists.vmware.com/pipermail/security-announce/2010/000090.html  View
451419 41142 CVE-2009-3707 MISC:http://www.shinnai.net/index.php?mod=02_Forum&group=02_Bugs_and_Exploits&argument=01_Remote&topic=1254924405.ff.php  View
451420 41142 CVE-2009-3707 MISC:http://www.shinnai.net/xplits/TXT_JtYUv6C6j5b6Bw6iIkF4.html  View
451421 41142 CVE-2009-3707 MISC:http://www.shinnai.net/exploits/abFwcLOuFqmD20yqhYpQ.txt  View
451422 41142 CVE-2009-3707 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2010-0007.html  View
451423 41142 CVE-2009-3707 GENTOO:GLSA-201209-25  View
451424 41142 CVE-2009-3707 URL:http://security.gentoo.org/glsa/glsa-201209-25.xml  View
451425 41142 CVE-2009-3707 BID:36630  View
451426 41142 CVE-2009-3707 URL:http://www.securityfocus.com/bid/36630  View
451427 41142 CVE-2009-3707 SECTRACK:1022997  View
451428 41142 CVE-2009-3707 URL:http://securitytracker.com/id?1022997  View
451429 41142 CVE-2009-3707 SECUNIA:36988  View
451430 41142 CVE-2009-3707 URL:http://secunia.com/advisories/36988  View
451431 41142 CVE-2009-3707 SECUNIA:39206  View
451432 41142 CVE-2009-3707 URL:http://secunia.com/advisories/39206  View
451433 41142 CVE-2009-3707 SECUNIA:39215  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
44054 JVNDB-2009-005061 httpdx の http.cpp におけるスタックベースのバッファオーバーフローの脆弱性 httpdx の http.cpp の h_handlepeer 関数には、スタックベースのバッファオーバーフローの脆弱性が存在します。 CVE-2009-3711 41142 10 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005061.html  View