Vulnerabilities for Movie decoder (...) - CXSECURITY.COM

Vulnerabilities for 'Movie decoder'

2012-10-05

CVE-2012-4897

Untrusted search path vulnerability in the installer in VMware Movie Decoder before 9.0 allows local users to gain privileges via a Trojan horse executable file in the installer directory.

2010-12-06

CVE-2010-4294

CWE-94

The frame decompression functionality in the VMnc media codec in VMware Movie Decoder before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548, VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548 on Windows, VMware Player 2.5.x before 2.5.5 build 246459 and 3.x before 3.1.2 build 301548 on Windows, and VMware Server 2.x on Windows does not properly validate an unspecified size field, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted video file.

2009-09-08

CVE-2009-2628

CWE-94

The VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows does not properly handle certain small heights in video content, which might allow remote attackers to execute arbitrary code via a crafted AVI file that triggers heap memory corruption.

2010-04-12

CVE-2009-1565

CWE-119

vmnc.dll in the VMnc media codec in VMware Movie Decoder before 6.5.4 Build 246459 on Windows, and the movie decoder in VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Windows, allows remote attackers to execute arbitrary code via an AVI file with crafted HexTile-encoded video chunks that trigger heap-based buffer overflows, related to "integer truncation errors."

CVE-2009-1564

CWE-119

Heap-based buffer overflow in vmnc.dll in the VMnc media codec in VMware Movie Decoder before 6.5.4 Build 246459 on Windows, and the movie decoder in VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Windows, allows remote attackers to execute arbitrary code via an AVI file with crafted video chunks that use HexTile encoding.

2009-09-08

CVE-2009-0199

CWE-119

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

>>> Vendor: Vmware 132 Products

Vmware workstation

Vmware player 2

Movie decoder

Vmware virtualcenter

Vcenter lab manager

Vcenter stage manager

Springsource spring security

Virtual infrastructure client

Springsource spring framework

Vcenter update manager

Vcenter chargeback manager

Vcenter orchestrator

Vshield manager

Vcenter operations

Vcenter server appliance

Vcloud director

Vcloud networking and security

Vcloud automation center

Vsphere data protection

Horizon view client

Vrealize orchestrator

Vrealize business

Vrealize automation

Vcloud automation identity appliance

Vrealize log insight

Vcloud networking and security edge

Workstation player

Workstation pro

Identity manger

Vrealize operations

Unified access gateway

Intelligent hub

Workspace one boxer

Workspace one content

Workspace one intelligent hub

Workspace one notebook

Workspace one people

Workspace one piv-d manager

Workspace one sdk

Workspace one sdk \(objective-c\)

Workspace one web

Spring cloud config

Tanzu application service for vms

Cloud foundation

See all Products for Vendor Vmware

Copyright 2024, cxsecurity.com