CVE-2007-2491

CVSS 7.2 - HIGH

Description

The PIIX4 power management subsystem in EMC VMware Workstation 5.5.3.34685 and VMware Server 1.0.1.29996 allows local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004, triggering a denial of service (virtual machine crash) or other unspecified impact, a related issue to CVE-2007-1337.

Affected Products

3

Vendor	Product	Version
vmware	server	`1.0.1_build_29996`
vmware	workstation	`5.5.3_build_34685`
vmware	server	`1.0.1_build_29996`

References

http://osvdb.org/40088

http://taviso.decsystem.org/virtsec.pdf

http://www.vupen.com/english/advisories/2007/1592

http://osvdb.org/40088

http://taviso.decsystem.org/virtsec.pdf

http://www.vupen.com/english/advisories/2007/1592

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-2007-2491
Published:: 2007-05-04
Modified:: 2026-04-23
CVSS Score:: 7.2
Severity:: HIGH
Vector:: AV:L/AC:L/Au:N/C:C/I:C/A:C

Affected Vendors

vmware

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL