CVE-2007-5360

CVE Database · CVE-2007-5360

CVE-2007-5360

· N/AModified

CVSS v3.1

N/A

EPSS

15.33%

Published

Jan 8, 2008

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in OpenPegasus Management server, when compiled to use PAM and with PEGASUS_USE_PAM_STANDALONE_PROC defined, as used in VMWare ESX Server 3.0.1 and 3.0.2, might allow remote attackers to execute arbitrary code via vectors related to PAM authentication, a different vulnerability than CVE-2008-0003.

Weaknesses (CWE)

CWE-119

Affected Products (3)

openpegasus · management_servervulnerable

vmware · esxvulnerable

References (20)

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01438409

http://lists.vmware.com/pipermail/security-announce/2008/000002.html

http://secunia.com/advisories/28358

PatchVendor Advisory

http://secunia.com/advisories/28368

Vendor Advisory