Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).
References
Link | Resource |
---|---|
http://lists.vmware.com/pipermail/security-announce/2009/000065.html | Patch |
http://secunia.com/advisories/34938 | Vendor Advisory |
http://secunia.com/secunia_research/2009-25/ | Vendor Advisory |
http://www.securityfocus.com/archive/1/506286/100/0/threaded | |
http://www.securityfocus.com/bid/36290 | |
http://www.vmware.com/security/advisories/VMSA-2009-0012.html | Patch Vendor Advisory |
http://www.vupen.com/english/advisories/2009/2553 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: flexera
Published: 2009-09-08T22:00:00
Updated: 2018-10-11T19:57:01
Reserved: 2009-01-20T00:00:00
Link: CVE-2009-0199
JSON object: View
NVD Information
Status : Modified
Published: 2009-09-08T22:30:00.217
Modified: 2018-10-11T21:00:51.943
Link: CVE-2009-0199
JSON object: View
Redhat Information
No data.
CWE