VMware Update fixes Security Vulnerabilities
On May 30 VMware Inc. announced updates to VMware Workstation, VMware Player, VMware ACE and VMware Fusion to resolve critical security issues.
A heap buffer overflow could allow a process to break out of the guest VM and execute code on the host. In the Windows versions there's an additional vulnerability in the VMCI component.
The vulnerability affects Windows and Linux versions of VMware Workstation 6 and VMware Player 2.x, the Windows version of VMware ACE 2.x and VMware Fusion 1.x for Mac OS/X.
Additional details and download information: