CVE-2011-3868 - Vulncode-DB

ID:
CVE-2011-3868 (NVD)
- Vulnerability Info (edit)

2011-10-07

Buffer overflow in VMware Workstation 7.x before 7.1.5, VMware Player 3.x before 3.1.5, VMware Fusion 3.1.x before 3.1.3, and VMware AMS allows remote attackers to execute arbitrary code via a crafted UDF filesystem in an ISO image.

Products	Ams, Fusion, Player, Workstation
Type	Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119)
First patch	- None (likely due to unavailable code)
Links	• http://osvdb.org/76060 • http://secunia.com/advisories/46241 • http://security.gentoo.org/glsa/glsa-201209-25.xml • http://www.securityfocus.com/archive/1/520005/100/0/threaded • http://www.securityfocus.com/bid/49942 More/Less (2) • http://www.securitytracker.com/id?1026139 • http://www.vmware.com/security/advisories/VMSA-2011-0011.html
Annotation	Note: No patch was assigned yet.

ID: CVE-2011-3868 (NVD) - Vulnerability Info (edit)

2011-10-07

ID:
CVE-2011-3868 (NVD)
- Vulnerability Info (edit)