Wazi » ace http://olex.openlogic.com/wazi Thinking OPEN Fri, 19 Mar 2010 03:29:34 +0000 http://wordpress.org/?v=2.9.1 en hourly 1 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-2/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-2/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-2/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-2/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-2/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-2/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-2/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-2/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-3/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-3/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-3/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-3/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-3/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-3/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-3/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-3/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-4/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-4/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-4/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-4/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-4/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-4/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-4/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-4/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-5/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-5/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-5/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-5/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-5/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-5/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-5/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-5/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-6/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-6/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-6/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-6/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-6/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-6/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-6/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-6/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-7/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-7/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-7/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-7/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-7/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-7/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-7/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-7/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-8/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-8/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-8/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-8/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-8/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-8/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-8/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-8/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-9/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-9/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-9/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-9/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-9/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-9/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-9/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-9/feed/ 0 Ace 6.5.3 and prior [High] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-10/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-10/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-10/ Affects:
  • Ace 6.5.3 and prior [High]

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-0199
Severity: High

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-high-10/feed/ 0 Ace 6.5.3 and prior [Unknown Severity] http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-10/ http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-10/#comments Wed, 09 Sep 2009 01:30:00 +0000 Security Team http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-10/ Affects:
  • Ace 6.5.3 and prior [Unknown Severity]

Description

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2009-2628
Severity: Unknown Severity

National Vulnerabilities Database

NIST National Vulnerabilities Database

]]> http://olex.openlogic.com/wazi/2009/ace-6-5-3-and-prior-unknown-severity-10/feed/ 0