CVE-2007-5023

CVE Database · CVE-2007-5023

CVE-2007-5023

· N/AModified

CVSS v3.1

N/A

EPSS

0.32%

Published

Sep 21, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder.

Weaknesses (CWE)

CWE-264

Affected Products (9)

vmware · acevulnerable

vmware · playervulnerable

vmware · servervulnerable

vmware · workstationvulnerable

canonical · ubuntu_linuxvulnerable

References (14)

http://www.securityfocus.com/bid/25732

PatchThird Party AdvisoryVDB Entry

http://www.vmware.com/support/ace/doc/releasenotes_ace.html