CVE-2014-8373

Sažetak

The VMware Remote Console (VMRC) function in VMware vCloud Automation Center (vCAC) 6.0.1 through 6.1.1 allows remote authenticated users to gain privileges via vectors involving the "Connect (by) Using VMRC" function.

Reference

http://packetstormsecurity.com/files/129455/VMware-Security-Advisory-2014-0013.html
http://seclists.org/fulldisclosure/2014/Dec/33
http://secunia.com/advisories/61169
http://www.securityfocus.com/archive/1/534186/100/0/threaded
http://www.securitytracker.com/id/1031323
http://www.vmware.com/security/advisories/VMSA-2014-0013.html

CVSS

Base:	9.0
Impact:	10.0
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2018 - 19:53

Objavljeno

11-12-2014 - 15:59