Remote Command Execution Vulnerabilities in VMware Studio by VMware
CVE-2010-2667

Currently unrated

Key Information:

Vendor: Vmware
Status: Studio
Vendor: CVE Published:; 22 July 2010

Summary

VMware Studio 2.0 is affected by multiple unspecified vulnerabilities within its Virtual Appliance Management Infrastructure (VAMI). These vulnerabilities allow remote authenticated users to execute arbitrary commands by exploiting vectors related to the Studio virtual appliance or a virtual appliance generated using the Studio. This presents significant security risks for environments relying on VMware Studio for virtual appliance management.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/60350

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/512311/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securitytracker.com/id?1024187

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 22, 2010
Vulnerability Reserved
Jul 7, 2010