CVE-2010-4294
Published Dec 6, 2010
Last updated 6 years ago
Overview
- Description
- The frame decompression functionality in the VMnc media codec in VMware Movie Decoder before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548, VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 301548 on Windows, VMware Player 2.5.x before 2.5.5 build 246459 and 3.x before 3.1.2 build 301548 on Windows, and VMware Server 2.x on Windows does not properly validate an unspecified size field, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted video file.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-94
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vmware:movie_decoder:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88CDD5BD-D31E-4C47-81B6-674DD61263CC",
"versionEndIncluding": "6.5.5"
},
{
"criteria": "cpe:2.3:a:vmware:movie_decoder:6.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE79F3F7-A21A-4CAA-BB0D-2955299EE8E0"
},
{
"criteria": "cpe:2.3:a:vmware:movie_decoder:6.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91A02B59-86A1-4C48-AF2D-A7A05B9B75EF"
},
{
"criteria": "cpe:2.3:a:vmware:movie_decoder:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B55938DF-073D-4D0E-822B-B6D122511EF0"
},
{
"criteria": "cpe:2.3:a:vmware:movie_decoder:7.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6375DE2F-5D82-432F-8C2E-1AD5590801EE"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8E8F3BFF-676B-4E2C-98BA-DCA71E49060F"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3E658DA-56E8-49F0-B486-4EF622B63627"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "541D77A2-99C5-4CDB-877F-7E83E1E3369E"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6B53C0A-5A0C-4168-8AD3-F3E957AE8919"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3684F0D0-B8BE-442B-AA27-0A485E6BFFAF"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:6.5.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A172221-19AB-4F7D-AA28-94AD5A6EFBF1"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AB33DBC9-3B63-457E-A353-B9E7378211AE"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:7.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34F436D4-B7B7-43CB-A2BD-C5E791F7E3C3"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BF53DB66-4C79-47BB-AABD-6DCE2EF98E1E"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:7.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "13A31E93-7671-492E-A78F-89CF4703B04D"
},
{
"criteria": "cpe:2.3:a:vmware:workstation:7.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "99ADA116-A571-4788-8DF2-09E8A2AF92F4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vmware:player:2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE944A70-CB9C-4712-9802-509531396A02"
},
{
"criteria": "cpe:2.3:a:vmware:player:2.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "252D2C0B-B89A-4C89-8D6B-6A8E58FCD8DC"
},
{
"criteria": "cpe:2.3:a:vmware:player:2.5.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62DA49FA-6657-45B5-BF69-D3A03BA62A4D"
},
{
"criteria": "cpe:2.3:a:vmware:player:2.5.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "949C3917-4D7E-4B51-A872-BFBECB4D2CB2"
},
{
"criteria": "cpe:2.3:a:vmware:player:2.5.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "656039E8-8082-4208-B046-518D95769B25"
},
{
"criteria": "cpe:2.3:a:vmware:player:2.5.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "80003D5E-B63F-4635-94ED-706375A4F86F"
},
{
"criteria": "cpe:2.3:a:vmware:player:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F747AC1-E163-41A4-BAC7-FDF46F4057D5"
},
{
"criteria": "cpe:2.3:a:vmware:player:3.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A115959-9CDA-45ED-9002-BA1A31074E81"
},
{
"criteria": "cpe:2.3:a:vmware:player:3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C158CD97-41BA-4422-9A55-B1A8650A0900"
},
{
"criteria": "cpe:2.3:a:vmware:player:3.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "477D5F22-7DDD-461D-9CD1-2B2A968F6CB7"
},
{
"criteria": "cpe:2.3:a:vmware:player:3.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C174C452-7249-4B26-9F26-DFE9B3476874"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vmware:server:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A2543D5-AE09-4E90-B27E-95075BE4ACBF"
},
{
"criteria": "cpe:2.3:a:vmware:server:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E6CFDD84-A482-42C2-B43F-839F4D7F1130"
},
{
"criteria": "cpe:2.3:a:vmware:server:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9E565F23-AEEE-41A4-80EC-01961AD5560E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]