Integer overflow in the ISC dhcpd 3.0.x prior to 3.0.7 and 3.1.x prior to 3.1.1; and the DHCP server in EMC VMware Workstation prior to 5.5.5 Build 56455 and 6.x prior to 6.0.1 Build 55017, Player prior to 1.0.5 Build 56455 and Player 2 prior to 2.0.1 Build 55017, ACE prior to 1.0.3 Build 54075 and ACE 2 prior to 2.0.1 Build 55017, and Server prior to 1.0.4 Build 56528; allows remote malicious users to cause a denial of service (daemon crash) or execute arbitrary code via a malformed DHCP packet with a large dhcp-max-message-size that triggers a stack-based buffer overflow, related to servers configured to send many DHCP options to clients.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware server 1.0.3 |
||
vmware vmware workstation 6.0.1 |
||
vmware workstation 5.5.1 |
||
vmware workstation 5.5.1_build_19175 |
||
vmware workstation 3.4 |
||
vmware workstation 4.0 |
||
vmware workstation 5.5.3_build_34685 |
||
vmware workstation 5.5.3_build_42958 |
||
vmware ace 1.0.3 |
||
vmware ace 2.0 |
||
vmware workstation 4.0.1 |
||
vmware workstation 4.0.2 |
||
vmware workstation 5.5.4 |
||
vmware workstation 5.5.4_build_44386 |
||
vmware player 1.0.4 |
||
vmware player 2.0 |
||
vmware workstation 4.5.2 |
||
vmware workstation 5.5.0_build_13124 |
||
vmware workstation 6.0 |