The host is installed with the VMware Workstation 12.x before 12.5.0 or VMware Player 12.x before 12.5.0 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a cortado thinprint. Successful exploitation allows attacker to cause arbitrary code execution.