PT-2010-1297 · Vmware · Vmware Remote Console+1
Published
2010-04-12
·
Updated
2023-01-24
·
CVE-2009-3732
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
VMware Remote Console versions prior to the version that fixes the issue in build 158248
Description
The issue allows remote attackers to execute arbitrary code via unspecified vectors. This is due to a format string vulnerability in vmware-vmrc.exe.
Recommendations
For versions prior to the fixed version, consider restricting access to the vmware-vmrc.exe until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
RCE
Use of Externally-Controlled Format String
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vmware Remote Console
Vmware Workstation