Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

-ADVISORY- + -Thu Mar 16 02:50:51 EST 2006- + Integer Overflow in VMware

From: research () sec-consult com
Date: Thu, 16 Mar 2006 07:53:34 +0000 (GMT)



-ADVISORY- + -Thu Mar 16 02:50:51 EST 2006- + Integer Overflow in VMware




++++++++++++++++++++++++++++++++
o/ 卍 BACKGROUND
This vulnerability has no background information on the product in question.
++++++++++++++++++++++++++++++++
卍 \o DESCRIPTION
VMware incorrectly parses integer data, and this can be used to execute arbitrary code.

++++++++++++++++++++++++++++++++
o/ 卍 CVE INFORMATION
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-790568 to this issue



++++++++++++++++++++++++++++++++
CONTACT
Bernhard Mueller research () sec-consult com

CISSP CEH CSFA GREM SSP-CNSA SSP-MPA GWAS 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: