High

DATE	CVE	VULNERABILITY TITLE	RISK
2005-12-31	CVE-2005-3618	Cross-Site Request Forgery vulnerability in ESX Cross-site request forgery (CSRF) vulnerability in the management interface for VMware ESX Server 2.0.x before 2.0.2 patch 1, 2.1.x before 2.1.3 patch 1, and 2.x before 2.5.3 patch 2 allows allows remote attackers to perform unauthorized actions as the administrator via URLs, as demonstrated using the setUsr operation to change a password. network high complexity vmware	7.6
2005-11-18	CVE-2005-2939	Unspecified vulnerability in VMWare Workstation 5.0.0Build13124 Unquoted Windows search path vulnerability in VMWare Workstation 5.0.0 build-13124 might allow local users to gain privileges via a malicious "program.exe" file in the C: folder. local low complexity vmware	7.2
2004-12-31	CVE-2004-2515	Local Format String vulnerability in VMWare Workstation 4.5.2Build8848 Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privileges, might allow local users to execute arbitrary code via format string specifiers in command line arguments. local low complexity vmware	7.2
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2003-08-27	CVE-2003-0631	Local Security vulnerability in Workstation VMware GSX Server 2.5.1 build 4968 and earlier, and Workstation 4.0 and earlier, allows local users to gain root privileges via certain enivronment variables that are used when launching a virtual machine session. local low complexity vmware	7.2
2002-08-12	CVE-2002-0814	Buffer Overflow vulnerability in VMWare GSX Server 2.0.0Build2050 Buffer overflow in VMware Authorization Service for VMware GSX Server 2.0.0 build-2050 allows remote authenticated users to execute arbitrary code via a long GLOBAL argument. network low complexity vmware	7.5
1999-06-26	CVE-1999-0733	Unspecified vulnerability in VMWare Workstation 1.0.1 Buffer overflow in VMWare 1.0.1 for Linux via a long HOME environmental variable. local low complexity vmware	7.2