VMware Horizon View Agent 7.x < 7.5.1 Local Information Disclosure Vulnerability (VMSA-2018-0018)

Low Nessus Plugin ID 111386

Synopsis

The remote host has a virtual desktop agent installed that is affected by an information disclosure vulnerability.

Description

The VMware Horizon View Agent installed on the remote host is 7.x prior to 7.5.1. It is, therefore, affected by a local information disclosure vulnerability.

Solution

Upgrade to VMware Horizon View Agent 7.5.1 or later.

See Also

https://www.vmware.com/security/advisories/VMSA-2018-0018.html

Plugin Details

Severity: Low

ID: 111386

File Name: vmware_horizon_view_agent_VMSA-2018-0018.nasl

Version: 1.1

Type: local

Agent: windows

Family: Windows

Published: 2018/07/27

Modified: 2018/07/27

Dependencies: 63681

Risk Information

Risk Factor: Low

CVSS Score Source: CVE-2018-6971

CVSSv2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSSv3

Base Score: 4

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Vulnerability Information

CPE: cpe:/a:vmware:horizon_view_agent

Required KB Items: installed_sw/VMware View Agent

Patch Publication Date: 2018/07/19

Vulnerability Publication Date: 2018/07/19

Reference Information

CVE: CVE-2018-6971

VMSA: 2018-0018

IAVB: 2018-B-0092