VMWare ActiveX Control Buffer Overflow Vulnerability

An ActiveX control distributed with VMware is prone to a buffer-overflow vulnerability.

An attacker can trigger this issue by supplying large amounts of data to a finite buffer in an ActiveX component of VMware. A successful attack can corrupt memory and facilitate arbitrary code execution in the context of the vulnerable application.

VMware 5.5.1 is vulnerable to this issue; previous versions may be affected as well.


 

Privacy Statement
Copyright 2010, SecurityFocus