Double Free Vulnerability in VMware ESX Server 3.0.0 and 3.0.1
CVE-2007-1270

Currently unrated

Key Information:

Vendor: Vmware
Status: Esx Server; Esx
Vendor: CVE Published:; 6 April 2007

What is CVE-2007-1270?

A double free vulnerability exists in VMware ESX Server versions 3.0.0 and 3.0.1, which allows attackers to exploit this flaw to potentially cause a denial of service by crashing the server. Furthermore, this vulnerability may enable unauthorized access to sensitive information or the execution of arbitrary code through various unspecified vectors. Organizations utilizing these versions of the software should apply security patches to mitigate potential risks.

References

http://www.securitytracker.com/id?1017875

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/archive/1/464745/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2007/1267

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2007
Vulnerability Reserved
Mar 4, 2007

Vmware

What is CVE-2007-1270?

References

Timeline