[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Format string flaw in VMWare Workstation 4.5.2 build-8848.

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Format string flaw in VMWare Workstation 4.5.2 build-8848.
From: Reed Arvin <reedarvin@xxxxxxxxx>
Date: Mon, 29 Nov 2004 08:45:01 -0700

Summary:
Just a simple, low to no risk format string flaw in VMWare Workstation.

Details:
Running vmware.exe from the command line with certain arguments
produces a message box that contains various data stored in memory.

Vulnerable Versions:
VMWare Workstation 4.5.2 build-8848

Solutions:
The vendor was notified.  There was no response.

Exploit:
Run the following command from the command prompt:

vmware.exe %x%x%x%x

Discovered by Reed Arvin reedarvin[at]gmail[dot]com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: RE: [Full-Disclosure] Is www.sco.com hacked?
Next by Date: [Full-Disclosure] [SECURITY] [DSA 601-1] New libgd1 packages fix arbitrary code execution
Previous by thread: Re: AW: [Full-Disclosure] Is www.sco.com hacked?
Next by thread: [Full-Disclosure] [SECURITY] [DSA 601-1] New libgd1 packages fix arbitrary code execution
Index(es):
- Date
- Thread