Vulnerabilities > CVE-2007-1270 - Numeric Errors vulnerability in VMWare ESX and ESX Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Double free vulnerability in VMware ESX Server 3.0.0 and 3.0.1 allows attackers to cause a denial of service (crash), obtain sensitive information, or possibly execute arbitrary code via unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 | |
| OS | 2 |
Common Weakness Enumeration (CWE)
Oval
| accepted | 2010-08-16T04:10:48.244-04:00 | ||||||||||||||||
| class | vulnerability | ||||||||||||||||
| contributors |
| ||||||||||||||||
| definition_extensions |
| ||||||||||||||||
| description | Double free vulnerability in VMware ESX Server 3.0.0 and 3.0.1 allows attackers to cause a denial of service (crash), obtain sensitive information, or possibly execute arbitrary code via unspecified vectors. | ||||||||||||||||
| family | unix | ||||||||||||||||
| id | oval:org.mitre.oval:def:5463 | ||||||||||||||||
| status | accepted | ||||||||||||||||
| submitted | 2008-04-10T15:10:44.000-05:00 | ||||||||||||||||
| title | VMware ESX server double free vulnerability may let remote users execute arbitrary code | ||||||||||||||||
| version | 9 |
References
- http://osvdb.org/35268
- http://osvdb.org/35268
- http://secunia.com/advisories/24788
- http://secunia.com/advisories/24788
- http://securityreason.com/securityalert/2524
- http://securityreason.com/securityalert/2524
- http://www.securityfocus.com/archive/1/464745/100/0/threaded
- http://www.securityfocus.com/archive/1/464745/100/0/threaded
- http://www.securityfocus.com/bid/23323
- http://www.securityfocus.com/bid/23323
- http://www.securitytracker.com/id?1017875
- http://www.securitytracker.com/id?1017875
- http://www.vmware.com/support/vi3/doc/esx-5754280-patch.html
- http://www.vmware.com/support/vi3/doc/esx-5754280-patch.html
- http://www.vmware.com/support/vi3/doc/esx-6431040-patch.html
- http://www.vmware.com/support/vi3/doc/esx-6431040-patch.html
- http://www.vupen.com/english/advisories/2007/1267
- http://www.vupen.com/english/advisories/2007/1267
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5463
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5463