GCVE - cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*

part: a version: 7.0.1 update: *

Vendor	Vmware (`7bb62c7c-2241-5a0b-8dbc-5f13251fb24e`)
Product	Workstation (`a4dc8063-78d9-53b4-885a-eee6c2b65cf6`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-3288`	vulnerable	2026-06-03 14:31:57.427315	Details available VMware Workstation 7.x before 7.1.6 and 8.x before 8.0.4, VMware Player 3.x before 3.1.6 and 4.x before 4.0.4, VMware Fusion 4.x before 4.1.3, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 allow user-assisted remote attackers to execute arbitrary code on the host OS or cause a denial of service (memory corruption) on the host OS via a crafted Checkpoint file. Published: 2012-06-14T20:00:00.000Z Updated: 2024-08-06T19:57:50.453Z Open on db.gcve.eu Reference links http://www.vmware.com/security/advisories/VMSA-2012-0011.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17178	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3868`	vulnerable	2026-06-03 14:31:22.069252	Details available Buffer overflow in VMware Workstation 7.x before 7.1.5, VMware Player 3.x before 3.1.5, VMware Fusion 3.1.x before 3.1.3, and VMware AMS allows remote attackers to execute arbitrary code via a crafted UDF filesystem in an ISO image. Published: 2011-10-07T20:00:00.000Z Updated: 2024-08-06T23:53:31.191Z Open on db.gcve.eu Reference links http://secunia.com/advisories/46241 http://security.gentoo.org/glsa/glsa-201209-25.xml http://www.securityfocus.com/bid/49942 http://www.securitytracker.com/id?1026139 http://www.vmware.com/security/advisories/VMSA-2011-0011.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1126`	vulnerable	2026-06-03 14:30:58.681357	Details available VMware vmrun, as used in VIX API 1.x before 1.10.3 and VMware Workstation 6.5.x and 7.x before 7.1.4 build 385536 on Linux, might allow local users to gain privileges via a Trojan horse shared library in an unspecified directory. Published: 2011-04-01T21:00:00.000Z Updated: 2024-08-06T22:14:27.803Z Open on db.gcve.eu Reference links http://securitytracker.com/id?1025270 http://secunia.com/advisories/43885 http://www.vupen.com/english/advisories/2011/0816 https://exchange.xforce.ibmcloud.com/vulnerabilities/66472 http://www.vmware.com/security/advisories/VMSA-2011-0006.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4297`	vulnerable	2026-06-03 14:30:35.949249	Details available The VMware Tools update functionality in VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548; VMware Player 2.5.x before 2.5.5 build 328052 and 3.1.x before 3.1.2 build 301548; VMware Server 2.0.2; VMware Fusion 2.x before 2.0.8 build 328035 and 3.1.x before 3.1.2 build 332101; VMware ESXi 3.5, 4.0, and 4.1; and VMware ESX 3.0.3, 3.5, 4.0, and 4.1 allows host OS users to gain privileges on the guest OS via unspecified vectors, related to a "command injection" issue. Published: 2010-12-06T21:00:00.000Z Updated: 2024-08-07T03:43:14.664Z Open on db.gcve.eu Reference links http://lists.vmware.com/pipermail/security-announce/2010/000112.html http://osvdb.org/69590 http://www.vmware.com/security/advisories/VMSA-2010-0018.html http://www.securityfocus.com/bid/45166 http://www.securityfocus.com/archive/1/514995/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4296`	vulnerable	2026-06-03 14:30:35.948321	Details available vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 does not properly load libraries, which allows host OS users to gain privileges via vectors involving shared object files. Published: 2010-12-06T21:00:00.000Z Updated: 2024-08-07T03:43:14.391Z Open on db.gcve.eu Reference links http://lists.vmware.com/pipermail/security-announce/2010/000112.html http://www.vmware.com/security/advisories/VMSA-2010-0018.html http://www.securityfocus.com/bid/45168 http://www.securityfocus.com/archive/1/514995/100/0/threaded http://secunia.com/advisories/42453	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4295`	vulnerable	2026-06-03 14:30:35.944701	Details available Race condition in the mounting process in vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548 on Linux, VMware Server 2.0.2 on Linux, and VMware Fusion 3.1.x before 3.1.2 build 332101 allows host OS users to gain privileges via vectors involving temporary files. Published: 2010-12-06T21:00:00.000Z Updated: 2024-08-07T03:43:13.972Z Open on db.gcve.eu Reference links http://lists.vmware.com/pipermail/security-announce/2010/000112.html http://osvdb.org/69585 http://www.vmware.com/security/advisories/VMSA-2010-0018.html http://www.securityfocus.com/bid/45167 http://www.securityfocus.com/archive/1/514995/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4294`	vulnerable	2026-06-03 14:30:35.937477	Details available The frame decompression functionality in the VMnc media codec in VMware Movie Decoder before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548, VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548 on Windows, VMware Player 2.5.x before 2.5.5 build 246459 and 3.x before 3.1.2 build 301548 on Windows, and VMware Server 2.x on Windows does not properly validate an unspecified size field, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted video file. Published: 2010-12-06T21:00:00.000Z Updated: 2024-08-07T03:43:14.430Z Open on db.gcve.eu Reference links http://lists.vmware.com/pipermail/security-announce/2010/000112.html http://www.vmware.com/security/advisories/VMSA-2010-0018.html http://www.securityfocus.com/bid/45169 http://www.securityfocus.com/archive/1/514995/100/0/threaded http://osvdb.org/69596	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-3277`	vulnerable	2026-06-03 14:30:30.673390	Details available The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 renders an index.htm file if present in the installation directory, which might allow local users to trigger unintended interpretation of web script or HTML by creating this file. Published: 2010-09-28T17:00:00.000Z Updated: 2024-09-17T03:49:11.046Z Open on db.gcve.eu Reference links http://www.vmware.com/security/advisories/VMSA-2010-0014.html http://secunia.com/advisories/41574 http://lists.vmware.com/pipermail/security-announce/2010/000105.html http://www.vupen.com/english/advisories/2010/2491 http://securitytracker.com/id?1024481	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4811`	vulnerable	2026-06-03 14:29:59.243559	Details available VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459, and VMware Server 2.x allows remote attackers to cause a denial of service (process crash) via a \x25\x90 sequence in the USER and PASS commands, a related issue to CVE-2009-3707. NOTE: some of these details are obtained from third party information. Published: 2010-04-27T15:00:00.000Z Updated: 2024-08-07T07:17:25.580Z Open on db.gcve.eu Reference links http://security.gentoo.org/glsa/glsa-201209-25.xml http://www.securityfocus.com/bid/36630 http://www.vmware.com/security/advisories/VMSA-2010-0007.html http://lists.vmware.com/pipermail/security-announce/2010/000090.html http://archives.neohapsis.com/archives/bugtraq/2010-04/0077.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-3707`	vulnerable	2026-06-03 14:29:52.875857	Details available VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 before 3.0.1 build 227600 and 2.5.x before 2.5.4 build 246459, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5.x before 2.5.4 build 246459, and VMware Server 2.x allows remote attackers to cause a denial of service (process crash) via a \x25\xFF sequence in the USER and PASS commands, related to a "format string DoS" issue. NOTE: some of these details are obtained from third party information. Published: 2009-10-16T16:00:00.000Z Updated: 2024-08-07T06:38:30.279Z Open on db.gcve.eu Reference links http://security.gentoo.org/glsa/glsa-201209-25.xml http://secunia.com/advisories/39206 http://www.securityfocus.com/bid/36630 http://securitytracker.com/id?1022997 http://lists.vmware.com/pipermail/security-announce/2010/000090.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.