Detections
Analytics

VMnc Media Codec Multiple Heap Overflows (VMSA-2009-0012)

high Nessus Plugin ID 40907

Synopsis

The remote host contains an application that is affected by multiple heap overflow vulnerabilities.

Description

VMnc media codec is installed on the remote host. The codec is typically installed along with VMware Workstation, VMware Player, VMware ACE or in its standalone configuration by installing VMware Workstation Movie Decoder and is required to play movies recorded with VMware applications.

The installed version is affected by multiple heap-based buffer overflow vulnerabilities. By tricking an user into opening a specially crafted video file with incorrect framebuffer parameters, an attacker may be able to exploit these vulnerabilities to trigger a denial of service condition or execute arbitrary code on the remote system.

Solution

Upgrade to :

 - VMware Workstation 6.5.3 or higher.
 - VMware Player 2.5.3 or higher.
 - VMware Movie Decoder 6.5.3 or higher (if used in standalone configuration).

See Also

https://www.vmware.com/security/advisories/VMSA-2009-0012.html

Plugin Details

Severity: High

ID: 40907

File Name: vmware_vmnc_codec_653.nasl

Version: 1.13

Type: local

Agent: windows

Family: Windows

Published: 9/9/2009

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:vmware:ace, cpe:/a:vmware:player, cpe:/a:vmware:movie_decoder, cpe:/a:vmware:vmware_workstation

Required KB Items: SMB/Registry/Enumerated

Exploit Ease: No known exploits are available

Patch Publication Date: 9/4/2007

Vulnerability Publication Date: 9/4/2000

Reference Information

CVE: CVE-2009-0199, CVE-2009-2628

BID: 36290

CWE: 119, 94

Secunia: 34938

VMSA: 2009-0012