CVE-2005-4459

Currently unrated

Key Information:

Vendor: Vmware
Status: Gsx Server; Ace; Workstation; Player
Vendor: CVE Published:; 21 December 2005

Summary

Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands.

References

http://secunia.com/advisories/18344

third-party-advisoryx_refsource_SECUNIA

http://securityreason.com/securityalert/282

third-party-advisoryx_refsource_SREASON

http://www.vupen.com/english/advisories/2005/3013

vdb-entryx_refsource_VUPEN

EPSS Score

52% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 21, 2005
Vulnerability Reserved
Dec 21, 2005