CVE-2014-1209

Currently unrated

Key Information:

Vendor: Vmware
Status: Vsphere Client
Vendor: CVE Published:; 11 April 2014

Summary

VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors.

References

http://www.vmware.com/security/advisories/VMSA-2014-0003....

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 11, 2014
Vulnerability Reserved
Jan 7, 2014