the hole is disclosed here

http://www.securityfocus.com/archive...4/2003-06-30/0

and the workaround given by VMWare is available here

http://www.vmware.com/support/kb/end...p?p_faqid=1019