Heap-based Buffer Overflow in VMware Products
CVE-2005-4459
Currently unrated
Key Information:
- Vendor
- Vmware
- Vendor
- CVE Published:
- 21 December 2005
Summary
A heap-based buffer overflow exists in the NAT networking components of VMware products, including VMware Workstation, GSX Server, ACE, and Player. This vulnerability allows remote authenticated attackers, including guests on the virtual machines, to execute arbitrary code. Exploitation occurs through specially crafted EPRT and PORT FTP commands, leading to potential unauthorized access and control of affected systems.
References
EPSS Score
63% chance of being exploited in the next 30 days.
Timeline
Vulnerability published
Vulnerability Reserved