CVE-2007-5618

CVE Database · CVE-2007-5618

CVE-2007-5618

· N/AModified

CVSS v3.1

N/A

EPSS

0.45%

Published

Oct 21, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unquoted Windows search path vulnerability in the Authorization and other services in VMware Player 1.0.x before 1.0.5 and 2.0 before 2.0.1, VMware Server before 1.0.4, and Workstation 5.x before 5.5.5 and 6.x before 6.0.1 might allow local users to gain privileges via malicious programs.

Affected Products (5)

vmware · player (up to 1.0.5)vulnerable

vmware · player (up to 2.0.1)vulnerable

vmware · server (up to 1.0.4)vulnerable

vmware · workstation (up to 5.5.5)vulnerable

vmware · workstation (up to 6.0.1)vulnerable

References (20)

http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html

Third Party Advisory

http://lists.vmware.com/pipermail/security-announce/2008/000008.html

Vendor Advisory

http://secunia.com/advisories/26890