CVE-2006-3547

Published: Jul 13, 2006Modified: Apr 16, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machine. NOTE: third parties have disputed this issue, saying that write access to the .vmx file enables other ways of stopping the virtual machine, so no privilege boundaries are crossed

Affected (1)

Products: Vmware: Player

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Vmware Player	All versions

References (8)

http://www.osvdb.org/27524

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/437756/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/437806/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/437809/100/200/threaded

Source: cve@mitre.org

http://www.osvdb.org/27524

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/437756/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/437806/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/437809/100/200/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.