TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
689
Signature ID: 30328
VMWare WorkStation Vielib.DLL ActiveX Control CreateProcess Method Code Execution
Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-4155 Bugtraq: 25131
Signature Description: VMware Workstation software consists of a virtual-machine suite for x86 and x86-64
computers. VMware Workstation version 6.0 installs VIELIB.DLL ActiveX Control which is vulnerable to code
execution via CreateProcess method. By persuading a victim to open a specially-crafted Web page, a remote attacker
could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim. Upgrade to
latest version of the software or use Microsoft's killbit mechanism for CLSIDs to disable affected Controls. This
signature detects attacks using CLSID and CreateProcess method.
Signature ID: 30329
VMWare WorkStation Vielib.DLL ActiveX Control CreateProcess Method Code Execution
Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-4155 Bugtraq: 25131
Signature Description: VMware Workstation software consists of a virtual-machine suite for x86 and x86-64
computers. VMware Workstation version 6.0 installs VIELIB.DLL ActiveX Control which is vulnerable to code
execution via CreateProcess method. By persuading a victim to open a specially-crafted Web page, a remote attacker
could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim. Upgrade to
latest version of the software or use Microsoft's killbit mechanism for CLSIDs to disable affected Controls. This
signature detects attacks using CLSID in UTF encoding.
Signature ID: 30330
VMWare WorkStation Vielib.DLL ActiveX Control CreateProcess Method Code Execution
Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-4155 Bugtraq: 25131
Signature Description: VMware Workstation software consists of a virtual-machine suite for x86 and x86-64
computers. VMware Workstation version 6.0 installs VIELIB.DLL ActiveX Control which is vulnerable to code
execution via CreateProcess method. By persuading a victim to open a specially-crafted Web page, a remote attacker
could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim. Upgrade to
latest version of the software or use Microsoft's killbit mechanism for CLSIDs to disable affected Controls. This
signature detects attacks using PROGID and CreateProcess method.
Signature ID: 30331
VMWare WorkStation Vielib.DLL ActiveX Control CreateProcess Method Code Execution
Vulnerability
Threat Level: Severe
Industry ID: CVE-2007-4155 Bugtraq: 25131
Signature Description: VMware Workstation software consists of a virtual-machine suite for x86 and x86-64
computers. VMware Workstation version 6.0 installs VIELIB.DLL ActiveX Control which is vulnerable to code
execution via CreateProcess method. By persuading a victim to open a specially-crafted Web page, a remote attacker
could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim. Upgrade to
latest version of the software or use Microsoft's killbit mechanism for CLSIDs to disable affected Controls. This
signature detects attacks using PROGID in UTF encoding.