Heap-based buffer overflow in the VNnc Codec in VMware Workstation 6.5.x prior to 6.5.2 build 156735, VMware Player 2.5.x prior to 2.5.2 build 156735, VMware ACE 2.5.x prior to 2.5.2 build 156735, and VMware Server 2.0.x prior to 2.0.1 build 156745 allows remote malicious users to execute arbitrary code via a crafted web page or video file, aka ZDI-CAN-435.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware player 2.5.1 |
||
vmware ace 2.5.1 |
||
vmware server 2.0 |
||
vmware workstation 6.5.1 |