CVE-2007-2491 - Vulnerability Details - OpenCVE

The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Vmware	Server Workstation

Configuration 1 [-]

OR	cpe:2.3:a:vmware:server:1.0.1_build_29996:::::::*
	cpe:2.3:a:vmware:workstation:5.5.3_build_34685:::::::*

Configuration 2 [-]

cpe:2.3:a:vmware:server:1.0.1_build_29996:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/40088
http://taviso.decsystem.org/virtsec.pdf
http://www.vupen.com/english/advisories/2007/1592

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-05-04T00:00:00

Updated: 2024-08-07T13:42:33.178Z

Reserved: 2007-05-03T00:00:00

Link: CVE-2007-2491

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-05-04T00:19:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-2491

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-05-01T00:00:00", "descriptions": [{"lang": "en", "value": "The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-06-22T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "ADV-2007-1592", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "40088", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/40088"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2491", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://taviso.decsystem.org/virtsec.pdf", "refsource": "MISC", "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "ADV-2007-1592", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "40088", "refsource": "OSVDB", "url": "http://osvdb.org/40088"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T13:42:33.178Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"name": "ADV-2007-1592", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"name": "40088", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/40088"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2491", "datePublished": "2007-05-04T00:00:00", "dateReserved": "2007-05-03T00:00:00", "dateUpdated": "2024-08-07T13:42:33.178Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:server:1.0.1_build_29996:*:*:*:*:*:*:*", "matchCriteriaId": "EB051A5C-5F66-4732-949A-48B0FDE4AFF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:workstation:5.5.3_build_34685:*:*:*:*:*:*:*", "matchCriteriaId": "51C6D608-64DE-4CC4-9869-3342E8FD707F", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:server:1.0.1_build_29996:*:*:*:*:*:*:*", "matchCriteriaId": "EB051A5C-5F66-4732-949A-48B0FDE4AFF1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337."}, {"lang": "es", "value": "El subsitema de administraci\u00f3n de alimentaci\u00f3n PIIX4 en EMC VMware Workstation 5.5.3.34685 y VMware Server 1.0.1.29996 permite a usuarios locales escribir en posiciones de memoria de su elecci\u00f3n mediante un escritura en memoria (poke) manipulada en el puerto de entrada/salida 0x1004, disparando una denegaci\u00f3n de servicio (ca\u00edda de m\u00e1quina virtual) u otro impacto no especificado, tema relacionado en CVE-2007-1337."}], "id": "CVE-2007-2491", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-05-04T00:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/40088"}, {"source": "cve@mitre.org", "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/1592"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/40088"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://taviso.decsystem.org/virtsec.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/1592"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}