Heap-based Buffer Overflow in VMware Products
CVE-2005-4459

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
21 December 2005

Summary

A heap-based buffer overflow exists in the NAT networking components of VMware products, including VMware Workstation, GSX Server, ACE, and Player. This vulnerability allows remote authenticated attackers, including guests on the virtual machines, to execute arbitrary code. Exploitation occurs through specially crafted EPRT and PORT FTP commands, leading to potential unauthorized access and control of affected systems.

References

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.