CVE - CVE-2009-0177

CVE-ID
CVE-2009-0177	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
vmwarebase.dll, as used in the vmware-authd service (aka vmware-authd.exe), in VMware Workstation 6.5.1 build 126130, 6.5.1 and earlier; VMware Player 2.5.1 build 126130, 2.5.1 and earlier; VMware ACE 2.5.1 and earlier; VMware Server 2.0.x before 2.0.1 build 156745; and VMware Fusion before 2.0.2 build 147997 allows remote attackers to cause a denial of service (daemon crash) via a long (1) USER or (2) PASS command.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:34373 URL:http://www.securityfocus.com/bid/34373 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2009-0005.html EXPLOIT-DB:7647 URL:https://www.exploit-db.com/exploits/7647 FULLDISC:20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues URL:http://seclists.org/fulldisclosure/2009/Apr/0036.html MLIST:[security-announce] 20090403 VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues URL:http://lists.vmware.com/pipermail/security-announce/2009/000054.html OSVDB:51180 URL:~~http://osvdb.org/51180~~ (Obsolete source) OVAL:oval:org.mitre.oval:def:6433 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6433 SECTRACK:1021512 URL:http://www.securitytracker.com/id?1021512 SECUNIA:33372 URL:http://secunia.com/advisories/33372 SECUNIA:34601 URL:http://secunia.com/advisories/34601 VUPEN:ADV-2009-0024 URL:~~http://www.vupen.com/english/advisories/2009/0024~~ (Obsolete source) VUPEN:ADV-2009-0944 URL:~~http://www.vupen.com/english/advisories/2009/0944~~ (Obsolete source)
Assigning CNA
MITRE Corporation
Date Record Created
20090120	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20090120)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)