PT-2017-2753 · Vmware · Vmware Horizon View+1

Publicado

2017-04-18

Atualizado

2017-07-11

CVE-2017-4907

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions VMware Unified Access Gateway versions 2.5.x through 2.8.0 VMware Horizon View versions 6.x through 6.2.3 VMware Horizon View versions 7.x through 7.0.x

Description The issue is caused by a heap buffer-overflow, which may allow a remote attacker to execute code on the security gateway. This can potentially enable an attacker to run arbitrary code on the device.

Recommendations For VMware Unified Access Gateway versions 2.5.x through 2.8.0, update to version 2.8.1 or later. For VMware Horizon View versions 6.x through 6.2.3, update to version 6.2.4 or later. For VMware Horizon View versions 7.x through 7.0.x, update to version 7.1.0 or later.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

BDU:2017-02002

CVE-2017-4907

Produtos afetados

Vmware Horizon View

Vmware Unified Access Gateway

PT-2017-2753 · Vmware · Vmware Horizon View+1

CVE-2017-4907

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6