CVE-2006-3547 is a vulnerability in VMware Player

EMC VMware Player allows user-assisted attackers to cause a denial of service (unrecoverable application failure) via a long value of the ide1:0.fileName parameter in the .vmx file of a virtual machine. NOTE: third parties have disputed this issue, saying that write access to the .vmx file enables other ways of stopping the virtual machine, so no privilege boundaries are crossed

Vulnerability Analysis

CVE-2006-3547 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Products Associated with CVE-2006-3547

Want to know whenever a new CVE is published for VMware Player? stack.watch will email you.

Exploit Probability

EPSS

0.39%

Percentile

60.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2006-3547 is a vulnerability in VMware PlayerPublished on July 13, 2006

Vulnerability Analysis

Products Associated with CVE-2006-3547

Exploit Probability

CVE-2006-3547 is a vulnerability in VMware Player
Published on July 13, 2006