PT-2009-3498 · Vmware · Vmware Server+3
Aaron Portnoy
·
Publicado
2009-04-06
·
Atualizado
2017-09-29
·
CVE-2009-0910
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
VMware Workstation versions 6.5.x through 6.5.1
VMware Player versions 2.5.x through 2.5.1
VMware ACE versions 2.5.x through 2.5.1
VMware Server versions 2.0.x through 2.0.0
Description
A heap-based buffer overflow in the VNnc Codec allows remote attackers to execute arbitrary code via a crafted web page or video file.
Recommendations
For VMware Workstation versions 6.5.x through 6.5.1, update to build 156735 or later.
For VMware Player versions 2.5.x through 2.5.1, update to build 156735 or later.
For VMware ACE versions 2.5.x through 2.5.1, update to build 156735 or later.
For VMware Server versions 2.0.x through 2.0.0, update to build 156745 or later.
Exploit
Correção
RCE
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Vmware Ace
Vmware Player
Vmware Server
Vmware Workstation