ID de Prueba:	1.3.6.1.4.1.25623.1.0.901020
Categoría:	Buffer overflow
Título:	VMware Products Multiple Vulnerabilities (VMSA-2009-0012) - Windows
Resumen:	VMWare products are prone to multiple vulnerabilities.
Descripción:	Summary: VMWare products are prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - An heap overflow error in the VMnc codec (vmnc.dll) when processing a video file with mismatched dimension. - An heap corruption error in the VMnc codec (vmnc.dll) when processing a video with a height of less than 8 pixels. Vulnerability Impact: Successful exploitation will allow attacker to cause a heap-based buffer overflow via a specially crafted video file with mismatched dimensions. Affected Software/OS: VMware Workstation versions prior to 6.5.3 Build 185404 VMware Player versions prior to 2.5.3 build 185404 Solution: Upgrade the VMWare product(s) according to the referenced vendor announcement. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0199 BugTraq ID: 36290 http://www.securityfocus.com/bid/36290 Bugtraq: 20090905 VMSA-2009-0012 VMware Movie Decoder, VMware Workstation, VMware Player, and VMware ACE resolve security issues. (Google Search) http://www.securityfocus.com/archive/1/506286/100/0/threaded http://secunia.com/secunia_research/2009-25/ http://lists.vmware.com/pipermail/security-announce/2009/000065.html http://secunia.com/advisories/34938 http://www.vupen.com/english/advisories/2009/2553 Common Vulnerability Exposure (CVE) ID: CVE-2009-2628 CERT/CC vulnerability note: VU#444513 http://www.kb.cert.org/vuls/id/444513
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.