Resolved Issues
The following issues are resolved in this release of VMware Workstation.
•VMware floppy device out-of-bounds memory write
Due to a flaw in the virtual floppy configuration it was possible to perform an out-of-bounds memory write. This vulnerability allowed a guest user to crash the VMX process or to potentially execute code on the host.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2012-2449 to this issue.
•VMware SCSI device unchecked memory write
Due to a flaw in the SCSI device registration it was possible to perform an unchecked write into memory. This vulnerability allowed a guest user to crash the VMX process or to potentially execute code on the host.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2012-2450 to this issue.