Vulnerability Name:

CVE-2007-0832 (CCN-32429)

Assigned:2007-02-03
Published:2007-02-03
Updated:2018-10-16
Summary:VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox is changed, which allows local users to obtain sensitive information or conduct certain attacks that are facilitated by weaker isolation between the host and guest operating systems.
CVSS v3 Severity:2.8 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:1.2 Low (CVSS v2 Vector: AV:L/AC:H/Au:N/C:P/I:N/A:N)
1.0 Low (Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:P/I:N/A:N/E:POC/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
1.7 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N)
1.5 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: CCN
Type: BugTraq Mailing List, Sat Feb 03 2007 - 16:30:30 CST
Vmare workstation guest isolation weaknesses (clipboard transfer)

Source: MITRE
Type: CNA
CVE-2007-0832

Source: OSVDB
Type: UNKNOWN
33222

Source: CCN
Type: OSVDB ID: 33222
VMware Workstation Shared Clipboard Unspecified Cross OS Information Disclosure

Source: BUGTRAQ
Type: UNKNOWN
20070203 Vmare workstation guest isolation weaknesses (clipboard transfer)

Source: BID
Type: Vendor Advisory
22413

Source: CCN
Type: BID-22413
VMware Clipboard Multiple Information Disclosure Vulnerabilities

Source: CCN
Type: VMware Web site
VMware Workstation

Source: XF
Type: UNKNOWN
vmware-shared-clipboard-info-disclosure(32429)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:vmware:workstation:5.5.3_build_34685:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:vmware:workstation:5.5.3_build_34685:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    vmware workstation 5.5.3_build_34685
    vmware workstation 5.5.3_build_34685