Intrusion PreventionVMware.Authorization.Service.User.Credential.Parsing.DoS
Description
This indicates a possible attack against a Denial of Service vulnerability in VMware Player and Workstation.
The vulnerability is caused by the application"s failure to perform adequate validation checks on user supplied input. Successful attacks may allow the attackers to crash the "vmware-authd" process, causing a DoS condition.
Affected Products
VMWare Workstation 6.5.3
VMWare Workstation 6.5.2
VMWare Workstation 6.5.1
VMWare Workstation 6.5 build 118166
VMWare Workstation 7.0
VMWare Workstation 6.5.3 build 185404
VMWare Workstation 6.5.2 build 156735
VMWare Player 2.5.4
VMWare Player 2.5.3
VMWare Player 2.5.2 build 156735
VMWare Player 2.5.2
VMWare Player 2.5.1
VMWare Player 2.5 build 118166
VMWare Player 3.0
VMWare Player 2.5.3 build 185404
VMWare ACE 2.5.3 Build 185404
VMWare ACE 2.5.2 build 156735
VMWare ACE 2.5.2
VMWare ACE 2.5.1
VMWare ACE 2.5 build 118166
VMWare ACE 2.6
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Upgrade to the latest version, available from the website:
http://www.vmware.com/
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 28086 |
| Created | Jul 25, 2011 |
| Updated | May 04, 2022 |
| Risk |
|
| CVE ID | CVE-2009-3707 CVE-2009-4811 |
| Exploit Prediction Score | 46.99% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux |
| Affected App | Other |