Description
Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).
References (7)
Core 7
Core References
Patch mailing-list
x_refsource_mlist
http://lists.vmware.com/pipermail/security-announce/2009/000065.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36290
Vendor Advisory x_refsource_misc
http://secunia.com/secunia_research/2009-25/
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/506286/100/0/threaded
Patch, Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/2553
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34938
Patch, Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2009-0012.html
Scores
EPSS
0.1550
EPSS Percentile
94.8%
Details
CWE
CWE-119
Status
published
Products (12)
vmware/ace
2.5.0
vmware/ace
2.5.1
vmware/ace
2.5.2
vmware/movie_decoder
6.5.3
vmware/player
2.5
vmware/player
2.5.1
vmware/player
2.5.2
vmware/player
2.5.2_build_156735
vmware/workstation
6.5
vmware/workstation
6.5.0
... and 2 more
Published
Sep 08, 2009
Tracked Since
Feb 18, 2026