Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities

Information

Severity

Severity

Critical

Family

Family

VMware Local Security Checks

CVSSv2 Base

CVSSv2 Base

9.3

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

9 years ago

Modified

Modified

5 years ago

Summary

VMware vSphere Client updates address security vulnerabilities

Insight

Insight

a. vSphere Client Insecure Client Download vSphere Client contains a vulnerability in accepting an updated vSphere Client file from an untrusted source. The vulnerability may allow a host to direct vSphere Client to download and execute an arbitrary file from any URI. This issue can be exploited if the host has been compromised or if a user has been tricked into clicking a malicious link.

Affected Software

Affected Software

vSphere Client 5.1 vSphere Client 5.0 vSphere Client 4.1 vSphere Client 4.0

Detection Method

Detection Method

Checks for missing patches.

Solution

Solution

Apply the missing patch(es).

Common Vulnerabilities and Exposures (CVE)