VMware Movie Decoder Vulnerability in Multiple VMware Products
CVE-2010-4294

Currently unrated

Key Information:

Vendor
Vmware
Vendor
CVE Published:
6 December 2010

Summary

The VMnc media codec within VMware Movie Decoder fails to validate the size field adequately. This vulnerability can be exploited by remote attackers who craft a specific video file, potentially enabling arbitrary code execution or leading to a denial of service through heap memory corruption. This flaw affects multiple VMware products on Windows, making it critical for users to update their installations to the latest versions to mitigate risk.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.