Heap-based buffer overflow in the VNnc Codec in VMware Workstation 6.5.x before 6.5.2 build 156735, VMware Player 2.5.x before 2.5.2 build 156735, VMware ACE 2.5.x before 2.5.2 build 156735, and VMware Server 2.0.x before 2.0.1 build 156745 allows remote attackers to execute arbitrary code via a crafted web page or video file, aka ZDI-CAN-435.
Advisories
Source ID Title
EUVD EUVD EUVD-2009-0906 Heap-based buffer overflow in the VNnc Codec in VMware Workstation 6.5.x before 6.5.2 build 156735, VMware Player 2.5.x before 2.5.2 build 156735, VMware ACE 2.5.x before 2.5.2 build 156735, and VMware Server 2.0.x before 2.0.1 build 156745 allows remote attackers to execute arbitrary code via a crafted web page or video file, aka ZDI-CAN-435.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T04:57:16.312Z

Reserved: 2009-03-14T00:00:00

Link: CVE-2009-0909

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2009-04-06T15:30:04.377

Modified: 2025-04-09T00:30:58.490

Link: CVE-2009-0909

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.