Security update fixes flaws in VMware Workstation
Attackers could exploit several security flaws in VMware Workstation to run malicious code on targeted systems, but VMware has addressed the problems with the release of Workstation 6.0.1.
VMware Workstation is
a popular operating system virtualization application available for Linux and Microsoft Windows. According to the VMware advisory, Workstation's DHCP server is prone to multiple remote code-execution issues including a stack-based buffer-overflow vulnerability when handling a malformed DHCP packet; and a stack-based integer-underflow vulnerability when handling a malformed DHCP packet.
An attacker can exploit these issues to execute arbitrary code with the privileges of the user running the affected application.
VMware Workstation versions prior to 6.0.1 Build 55017 are vulnerable.