{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"VMware ACE version 2.5.2 et versions ant\u00e9rieures.","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Workstation Movie Decoder version 6.5.2 et version ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Player version 2.5.2 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Workstation version 6.5.2 et versions ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans la gestion de\ncertains formats vid\u00e9o via la biblioth\u00e8que vmnc.dll des produits VMware.\nL'exploitation de ces vuln\u00e9rabilit\u00e9s permet \u00e0 un utilisateur\nmalintentionn\u00e9 d'ex\u00e9cuter du code arbitraire \u00e0 distance via un fichier\nvid\u00e9o sp\u00e9cialement construit.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-0199","url":"https://www.cve.org/CVERecord?id=CVE-2009-0199"},{"name":"CVE-2009-0910","url":"https://www.cve.org/CVERecord?id=CVE-2009-0910"},{"name":"CVE-2009-2628","url":"https://www.cve.org/CVERecord?id=CVE-2009-2628"}],"links":[],"reference":"CERTA-2009-AVI-389","revisions":[{"description":"version initiale.","revision_date":"2009-09-18T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s permettant d'ex\u00e9cuter du code arbitraire \u00e0\ndistance ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans VMware","vendor_advisories":[{"published_at":null,"title":"Bulletin de mise \u00e0 jour VMware VMSA-2009-0012","url":"http://lists.vmware.com/pipermail/security-announce/2009/000065.html"}]}