VMware OVF Tool 2.1 File Handling Format String Vulnerability (VMSA-2012-0015)
High Nessus Plugin ID 63075
SynopsisThe remote Windows host has a tool installed that is affected by a format string vulnerability.
DescriptionThe version of the VMware OVF Tool installed on the remote Windows host is potentially affected by a format string vulnerability. By tricking a user into loading a specially crafted OVF file a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.
SolutionUpgrade to VMware OVF Tool 3.0.1 or later.