Multiple unspecified vulnerabilities in the Virtual Appliance Management Infrastructure (VAMI) in VMware Studio 2.0 allow remote authenticated users to execute arbitrary commands via vectors involving (1) the Studio virtual appliance or (2) a virtual appliance created by the Studio virtual appliance.
https://exchange.xforce.ibmcloud.com/vulnerabilities/60350
http://www.wmware.com/security/advisories/VMSA-2010-0011.html
http://www.vupen.com/english/advisories/2010/1791
http://www.securityfocus.com/bid/41566
http://www.securityfocus.com/archive/1/512311/100/0/threaded
http://securitytracker.com/id?1024187
http://secunia.com/advisories/40507
http://lists.vmware.com/pipermail/security-announce/2010/000101.html