The host is installed with VMware Workstation 7.x before 7.1.5 or VMware Player 3.x before 3.1.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted UDF filesystem in an ISO image. Successful exploitation allows remote attackers to execute arbitrary code.