Secunia Research has discovered a vulnerability in various VMWare products, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to a boundary error in the VMnc codec (vmnc.dll) and can be exploited to cause a heap-based buffer overflow via a specially crafted video file with mismatched dimensions. Successful exploitation may allow execution of arbitrary code.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81041/secunia-vmware.txt
Source: https://packetstormsecurity.com/files/81041/VMWare-VMnc-Codec-Mismatched-Dimensions-Buffer-Overflow.html