← Back

CVE-2007-5023

nvd nist
Published: Sep 21, 2007Modified: Apr 23, 2026

JSON object

Loading...
6.9
Vector
AV:L/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 3.4 / Impact: 10.0
Source: NVD

Description

Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder.

Affected (9)

Vmware
4 products
Ace
Player
Server
Workstation
Canonical
1 product
Ubuntu Linux
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Ace
From 1.0 to 1.0.3
Vmware
Player
From 1.0.0 to 1.0.5
Player
From 2.0 to 2.0.1
Server
From 1.0 to 1.0.4
Vmware
Workstation
From 5 to 5.5.5
Workstation
From 6.0 to 6.0.1
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 6.06
Ubuntu Linux
Version 6.10
Ubuntu Linux
Version 7.04

Related CWEs

CWE-264
CWE-264

References (14)

Source: cve@mitre.org
PatchThird Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.