CVE-2007-4591

high

Description

vstor-ws60.sys in VMWare Workstation 6.0 allows local users to cause a denial of service (host operating system crash) and possibly gain privileges by sending a small file buffer size value to the FsSetVolumeInformation IOCTL handler with an FsSetFileInformation subcode.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/36277

http://www.vupen.com/english/advisories/2007/2992

http://www.securitytracker.com/id?1018609

http://tarrysingh.blogspot.com/2007/08/security-vmware-workstation-6.html

http://secunia.com/advisories/26606

http://marc.info/?l=bugtraq&m=118805138626360&w=2

Details

Source: Mitre, NVD

Published: 2007-08-29

Updated: 2017-07-29

Risk Information

CVSS v2

Base Score: 6.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High