Full Disclosure mailing list archives
Format string flaw in VMWare Workstation 4.5.2 build-8848.
From: Reed Arvin <reedarvin () gmail com>
Date: Mon, 29 Nov 2004 08:45:01 -0700
Summary: Just a simple, low to no risk format string flaw in VMWare Workstation. Details: Running vmware.exe from the command line with certain arguments produces a message box that contains various data stored in memory. Vulnerable Versions: VMWare Workstation 4.5.2 build-8848 Solutions: The vendor was notified. There was no response. Exploit: Run the following command from the command prompt: vmware.exe %x%x%x%x Discovered by Reed Arvin reedarvin[at]gmail[dot]com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Format string flaw in VMWare Workstation 4.5.2 build-8848. Reed Arvin (Nov 29)