Full Disclosure mailing list archives
-ADVISORY- + -Thu Mar 16 02:50:51 EST 2006- + Integer Overflow in VMware
From: research () sec-consult com
Date: Thu, 16 Mar 2006 07:53:34 +0000 (GMT)
-ADVISORY- + -Thu Mar 16 02:50:51 EST 2006- + Integer Overflow in VMware ++++++++++++++++++++++++++++++++ o/ å BACKGROUND This vulnerability has no background information on the product in question. ++++++++++++++++++++++++++++++++ å \o DESCRIPTION VMware incorrectly parses integer data, and this can be used to execute arbitrary code. ++++++++++++++++++++++++++++++++ o/ å CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-790568 to this issue ++++++++++++++++++++++++++++++++ CONTACT Bernhard Mueller research () sec-consult com CISSP CEH CSFA GREM SSP-CNSA SSP-MPA GWAS _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- -ADVISORY- + -Thu Mar 16 02:50:51 EST 2006- + Integer Overflow in VMware research (Mar 16)