CVE-2017-4918
N/A
N/A
Summary
VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. Successful exploitation of this issue may allow unprivileged users to escalate their privileges to root on the Mac OSX system where the client is installed.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| VMware | Horizon View Client for Mac | 2.x | affected |
| VMware | Horizon View Client for Mac | 3.x | affected |
| VMware | Horizon View Client for Mac | 4.x prior to 4.5.0 | affected |
Weaknesses
- Command injection vulnerability
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1038642
- https://www.vmware.com/security/advisories/VMSA-2017-0011.html
- http://www.securityfocus.com/bid/98984
References
- http://www.securitytracker.com/id/1038642
- https://www.vmware.com/security/advisories/VMSA-2017-0011.html
- http://www.securityfocus.com/bid/98984
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.