CVE-2009-0199

CVE Database · CVE-2009-0199

CVE-2009-0199

· N/AModified

CVSS v3.1

N/A

EPSS

5.02%

Published

Sep 8, 2009

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attackers to execute arbitrary code via a video file with crafted dimensions (aka framebuffer parameters).

Weaknesses (CWE)

CWE-119

Affected Products (12)

vmware · acevulnerable

vmware · movie_decodervulnerable

vmware · playervulnerable