G

**Name of the Vulnerable Software and Affected Versions** ESET Smart Security version 3.0.667.0 **Description** The issue allows local users to cause a denial of service, resulting in a system crash. This is achieved by sending a crafted IOCTL 0x222003 request to the ".easdrv" device interface, specifically targeting the easdrv.sys component. **Recommendations** For ESET Smart Security version 3.0.667.0, consider restricting access to the easdrv.sys component to minimize the risk of exploitation. As a temporary workaround, avoid using the IOCTL 0x222003 request to the ".easdrv" device interface until a patch is available.

**Name of the Vulnerable Software and Affected Versions** VMware Workstation versions 6.5.1 and earlier VMware Player versions 2.5.1 and earlier VMware ACE versions 2.5.1 and earlier VMware Server versions prior to 1.0.9 build 156507 VMware Server versions 2.0.x prior to 2.0.1 build 156745 **Description** The issue allows local users to cause a denial of service via a crafted IOCTL request, due to the use of the METHOD NEITHER communication method for IOCTLs in the hcmon.sys driver. **Recommendations** For VMware Workstation versions 6.5.1 and earlier, update to a version later than 6.5.1. For VMware Player versions 2.5.1 and earlier, update to a version later than 2.5.1. For VMware ACE versions 2.5.1 and earlier, update to a version later than 2.5.1. For VMware Server versions prior to 1.0.9 build 156507, update to version 1.0.9 build 156507 or later. For VMware Server versions 2.0.x prior to 2.0.1 build 156745, update to version 2.0.1 build 156745 or later.

**Name of the Vulnerable Software and Affected Versions** VLC Media Player version 0.8.6i **Description** The issue is related to an integer overflow in the Open function in modules/demux/tta.c, which can be triggered by a crafted TTA file. This can cause a denial of service, resulting in an application crash, or possibly allow the execution of arbitrary code due to a heap-based buffer overflow. **Recommendations** For version 0.8.6i, consider updating to a newer version to mitigate the risk, as the current version is affected by the integer overflow issue in the Open function. As a temporary workaround, avoid using the `Open` function in the `modules/demux/tta.c` module to minimize the risk of exploitation. Restrict access to crafted TTA files to prevent potential attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** VLC Media Player version 0.8.6i **Description** The issue is related to an integer signedness error in the `mms ReceiveCommand` function, located in `modules/access/mms/mmstu.c`, which can be exploited by a remote attacker to execute arbitrary code. This is achieved through a crafted mmst link containing a negative size value, bypassing a size check and triggering an integer overflow, followed by a buffer overflow. **Recommendations** For VLC Media Player version 0.8.6i, consider disabling the `mms ReceiveCommand` function as a temporary workaround until a patch is available. Restrict access to the `mmstu.c` module to minimize the risk of exploitation. Avoid using crafted mmst links with negative size values in the affected API endpoint until the issue is resolved.