VMware Authorization Service Denial of Service Vulnerability (Windows)

The host is installed with VMWare product(s) that are vulnerable to Denial of Service vulnerability.

The vulnerability is due to an error in the VMware Authorization Service when processing login requests. This can be exploited to terminate the 'vmware-authd' process via 'USER' or 'PASS' strings containing '\xFF' characters, sent to TCP port 912.

VMware ACE 2.5.3 and prior. VMware Player 2.5.3 build 185404 and prior. VMware Workstation 6.5.3 build 185404 and prior.

Upgrade VMware ACE to 2.5.4 build 246459 or later, Upgrade VMware Player to 2.5.4 build 246459 or later, Upgrade VMware Workstation to 6.5.4 build 246459 or later.