CVE-2007-2491

Name of the Vulnerable Software and Affected Versions EMC VMware Workstation version 5.5.3.34685 VMware Server version 1.0.1.29996

Description The issue affects the PIIX4 power management subsystem, allowing local users to write to arbitrary memory locations via a crafted poke to I/O port 0x1004. This can trigger a denial of service, such as a virtual machine crash, or have other unspecified impacts.

Recommendations For EMC VMware Workstation version 5.5.3.34685, consider restricting access to the PIIX4 power management subsystem to minimize the risk of exploitation. For VMware Server version 1.0.1.29996, avoid using the I/O port 0x1004 until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.