CVE-2009-1564

Related Files

VMware Products Movie Decoder Heap Overflow

Posted Apr 13, 2010

Authored by Sebastien Renaud | Site vupen.com

VUPEN Vulnerability Research Team discovered a vulnerability in VMware products. The flaw is caused by a heap overflow error in the VMnc media codec when processing malformed AVI files, which could be exploited by attackers to potentially execute arbitrary code by tricking a user into opening a malicious movie file.

tags | advisory, overflow, arbitrary

advisories | CVE-2009-1564

SHA-256 | 2e72f86909afe0ec5a35355727f65dd08935da73341f14fd695e4cc7bc581331

Download | Favorite | View

VMWare VMnc Codec HexTile Encoding Buffer Overflow

Posted Apr 10, 2010

Authored by Alin Rad Pop | Site secunia.com

Secunia Research has discovered a vulnerability in multiple VMWare products, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused by a boundary error in vmnc.dll when processing HexTile encoded video chunks and can be exploited to cause a heap-based buffer overflow. Successful exploitation may allow execution of arbitrary code by tricking a user into opening a specially crafted AVI file.

tags | advisory, overflow, arbitrary

advisories | CVE-2009-1564

SHA-256 | 51f3c7fde9ec1243f3e24e712b834af517fb1633907eceaade5df15ac236b860

Download | Favorite | View

VMware Security Advisory 2010-0007

Posted Apr 10, 2010

Authored by VMware | Site vmware.com

VMware Security Advisory - VMware hosted products, vCenter Server and ESX patches resolve multiple security issues.

tags | advisory

advisories | CVE-2010-1142, CVE-2010-1140, CVE-2009-2042, CVE-2009-1564, CVE-2009-1565, CVE-2009-3732, CVE-2009-3707, CVE-2010-1138, CVE-2010-1139, CVE-2010-1141

SHA-256 | e16687d5cfca70a16709fd562f838d84c272a3a7b70eda5f2039b595265b5db8

Download | Favorite | View