CVE ID | CVE-2015-1044 |
CVSS SCORE | 5.0, AV:N/AC:L/Au:N/C:N/I:N/A:P |
AFFECTED VENDORS |
VMware, Inc. |
AFFECTED PRODUCTS |
VMware Workstation |
VULNERABILITY DETAILS |
The specific flaw exists within the VMWare Authorization service, which is listening on port 912. By sending a malformed packet, an attacker is able to cause the service to shut itself down. The service will not automatically restart, and once disabled virtual machines will not be able to get access to new resources. |
ADDITIONAL DETAILS |
VMware, Inc. has issued an update to correct this vulnerability. More details can be found at:
http://www.vmware.com/security/advisories/VMSA-2015-0001.html |
DISCLOSURE TIMELINE |
|
CREDIT | Dmitry Yudin @ret5et |