The host is installed with VMware Workstation 7.1.x before 7.1.2 or VMware Player 3.1.x before 3.1.2 and is prone to a buffer overflow vulnerability. A flaw is present in the libpng, which fails to handle unknown vectors. Successful exploitation allows remote attackers to bypass security feature.