VYPR
Unrated severityNVD Advisory· Published Sep 21, 2007· Updated Jun 16, 2026

CVE-2007-5023

CVE-2007-5023

Description

Unquoted Windows search path vulnerability in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075, and Server before 1.0.4 Build 56528 allows local users to gain privileges via unspecified vectors, possibly involving a malicious "program.exe" file in the C: folder.

Affected products

11
  • VMware/Ace2 versions
    cpe:2.3:a:vmware:ace:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vmware:ace:*:*:*:*:*:*:*:*range: >=1.0,<=1.0.3
    • (no CPE)range: <1.0.3 Build 54075
  • cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
    Range: >=1.0.0,<=1.0.5
  • VMware/Server2 versions
    cpe:2.3:a:vmware:server:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vmware:server:*:*:*:*:*:*:*:*range: >=1.0,<=1.0.4
    • (no CPE)range: <1.0.4 Build 56528
  • cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*range: >=5,<=5.5.5
    • (no CPE)range: <5.5.5 Build 56455, <6.0.1 Build 55017
  • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*+ 2 more
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
  • Range: <1.0.5 Build 56455, <2.0.1 Build 55017

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.