This script is Copyright (C) 2017 Tenable Network Security, Inc.
A desktop virtualization application installed on the remote macOS or
Mac OS X host is affected by a command injection vulnerability.
The version of VMware Horizon View Client installed on the remote
macOS or Mac OS X host is 2.x, 3.x, or 4.x prior to 4.5.0. It is,
therefore, affected by a command injection vulnerability in the
service startup script due to improper validation of user-supplied
input. A local attacker can exploit this, by sending specially crafted
data, to inject and execute arbitrary commands with root privileges.
See also :
Upgrade to VMware Horizon View Client 4.5.0 or later.
Risk factor :
High / CVSS Base Score : 7.2
CVSS Temporal Score : 6.0
Public Exploit Available : true