[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Format string flaw in VMWare Workstation 4.5.2 build-8848.

To: "Reed Arvin" <reedarvin@xxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Format string flaw in VMWare Workstation 4.5.2 build-8848.
From: "BillyBob" <billybobknob@xxxxxxxxxxx>
Date: Sun, 5 Dec 2004 18:53:40 -0400

I tried it on that version inside an XP (no SP) system and it did not work


----- Original Message -----
From: "Reed Arvin" <reedarvin@xxxxxxxxx>
To: <full-disclosure@xxxxxxxxxxxxxxxx>
Sent: Monday, November 29, 2004 11:45 AM
Subject: [Full-Disclosure] Format string flaw in VMWare Workstation 4.5.2
build-8848.


> Summary:
> Just a simple, low to no risk format string flaw in VMWare Workstation.
>
> Details:
> Running vmware.exe from the command line with certain arguments
> produces a message box that contains various data stored in memory.
>
> Vulnerable Versions:
> VMWare Workstation 4.5.2 build-8848
>
> Solutions:
> The vendor was notified.  There was no response.
>
> Exploit:
> Run the following command from the command prompt:
>
> vmware.exe %x%x%x%x
>
> Discovered by Reed Arvin reedarvin[at]gmail[dot]com
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] Digest authentication share brute
Next by Date: RE: [Full-Disclosure] If Lycos can attack spammer sites, can we all start doing it?
Previous by thread: [Full-Disclosure] Digest authentication share brute
Next by thread: [Full-Disclosure] new winamp is out
Index(es):
- Date
- Thread