CVE-2012-3569

Currently unrated

Key Information:

Vendor: Vmware
Status: Ovf Tool
Vendor: CVE Published:; 14 November 2012

Summary

Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x before 8.0.5, VMware Player 4.x before 4.0.5, and other products, allows user-assisted remote attackers to execute arbitrary code via a crafted OVF file.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/79922

vdb-entryx_refsource_XF

http://technet.microsoft.com/en-us/security/msvr/msvr13-002

x_refsource_MISC

http://packetstormsecurity.com/files/120101/VMWare-OVF-To...

x_refsource_MISC

EPSS Score

96% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 14, 2012
Vulnerability Reserved
Jun 14, 2012