VMware View Server Directory Traversal Vulnerability (VMSA-2012-0017)

Medium Nessus Plugin ID 63685


The remote host has a desktop solution that affected by a directory traversal vulnerability.


The version of VMware View Server installed on the remote host is potentially affected by a directory traversal vulnerability in the Connection Server and View Security Server. This may allow a remote attacker to read arbitrary files from the system.


Upgrade to VMware View 4.6.2 / 5.1.2 or later.

See Also



Plugin Details

Severity: Medium

ID: 63685

File Name: vmware_view_vmsa_2012_0017.nasl

Version: $Revision: 1.2 $

Type: local

Agent: windows

Family: Windows

Published: 2013/01/24

Modified: 2013/01/24

Dependencies: 63682

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:vmware:view

Required KB Items: SMB/Registry/Enumerated, VMware/ViewServer/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/12/13

Vulnerability Publication Date: 2012/12/13

Reference Information

CVE: CVE-2012-5978

BID: 56942

OSVDB: 88461

VMSA: 2012-0017