VMnc Media Codec Multiple Heap Overflows (VMSA-2009-0012)

High Nessus Plugin ID 40907


The remote host contains an application that is affected by multiple heap overflow vulnerabilities.


VMnc media codec is installed on the remote host. The codec is typically installed along with VMware Workstation, VMware Player, VMware ACE or in its standalone configuration by installing VMware Workstation Movie Decoder and is required to play movies recorded with VMware applications.

The installed version is affected by multiple heap-based buffer overflow vulnerabilities. By tricking an user into opening a specially crafted video file with incorrect framebuffer parameters, an attacker may be able to exploit these vulnerabilities to trigger a denial of service condition or execute arbitrary code on the remote system.


Upgrade to :

- VMware Workstation 6.5.3 or higher.
- VMware Player 2.5.3 or higher.
- VMware Movie Decoder 6.5.3 or higher (if used in standalone configuration).

See Also


Plugin Details

Severity: High

ID: 40907

File Name: vmware_vmnc_codec_653.nasl

Version: $Revision: 1.11 $

Type: local

Agent: windows

Family: Windows

Published: 2009/09/09

Modified: 2016/11/29

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:vmware:ace, cpe:/a:vmware:player, cpe:/a:vmware:movie_decoder, cpe:/a:vmware:vmware_workstation

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2007/09/04

Vulnerability Publication Date: 2000/09/04

Reference Information

CVE: CVE-2009-0199, CVE-2009-2628

BID: 36290

OSVDB: 57835, 57836

VMSA: 2009-0012

Secunia: 34938

CWE: 94, 119