VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Dec 21, 2005· Updated Apr 16, 2026

CVE-2005-4459

CVE-2005-4459

Description

Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands.

Affected products

20
  • VMware/Ace
    cpe:2.3:a:vmware:ace:1.0:*:*:*:*:*:*:*
  • VMware/Gsx Server9 versions
    cpe:2.3:a:vmware:gsx_server:2.0:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:vmware:gsx_server:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:2.0.1_build_2129:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:2.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:2.5.1_build_5336:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:2.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:3.0_build_7592:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:gsx_server:3.2:*:*:*:*:*:*:*
  • VMware/Player
    cpe:2.3:a:vmware:player:1.0.0:*:*:*:*:*:*:*
  • VMware/Workstation9 versions
    cpe:2.3:a:vmware:workstation:3.2.1:patch1:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:vmware:workstation:3.2.1:patch1:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:4.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:4.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:4.5.2_build_8848:r4:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:5.0.0_build_13124:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:workstation:5.5:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

13

News mentions

0

No linked articles in our index yet.