VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
BID:39363
CVE-2009-1564 |Info
VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
| Bugtraq ID: | 39363 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2009-1564 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2010 12:00AM |
| Updated: | Apr 12 2010 08:13PM |
| Credit: | iDefense; Sebastien Renaud of VUPEN Vulnerability Research Team; Alin Rad Pop of Secunia Research |
| Vulnerable: |
VMWare Workstation 6.5.3 VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare Workstation 6.5 build 118166 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 2.0.1 build 156745 VMWare Server 2.0.1 VMWare Server 2.0 VMWare Player 2.5.3 VMWare Player 2.5.2 VMWare Player 2.5.1 VMWare Player 2.5 build 118166 VMWare Movie Decoder 6.5.4 |
| Not Vulnerable: | |
Discussion
VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
Multiple VMware products are prone to a heap-based buffer-overflow vulnerability.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote Vulnerabilities) but has been assigned its own record to better document it.
Multiple VMware products are prone to a heap-based buffer-overflow vulnerability.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
NOTE: This issue was previously covered in BID 39345 (VMware Hosted Products VMSA-2010-0007 Multiple Remote Vulnerabilities) but has been assigned its own record to better document it.
Exploit / POC
VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
A commercial proof of concept is available through VUPEN Security - Exploit and PoCs Service. This proof of concept is not otherwise publicly available or known to be circulating in the wild.
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
A commercial proof of concept is available through VUPEN Security - Exploit and PoCs Service. This proof of concept is not otherwise publicly available or known to be circulating in the wild.
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
Solution:
The vendor has released an advisory and patches. Please see the references for more information.
References
VMware Hosted Products HexTile Encoded Video Chunk Heap Buffer Overflow Vulnerability
References:
References:
- Secunia Research: VMWare VMnc Codec HexTile Encoding Buffer Overflow (Secunia)
- VMware Homepage (VMware)
- VMware VMnc Codec Heap Overflow Vulnerability (iDefense)
- VUPEN Security Research - VMware Products Movie Decoder Heap Overflow Vulnerabil ("VUPEN Security Research"