Heap-based Buffer Overflow in VMware Movie Decoder and Workstation
CVE-2009-0199

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
8 September 2009

Summary

A heap-based buffer overflow flaw exists in the VMnc media codec, specifically within vmnc.dll in multiple VMware products prior to specified versions. This vulnerability could potentially allow attackers to execute arbitrary code on an affected system by tricking users into opening specially crafted video files with manipulated dimensions or framebuffer parameters. As a result, it poses significant risks for systems running impacted VMware software.

References

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.