a. VMware View Server directory traversalVMware View contains a critical directory traversal vulnerability that allows an unauthenticated remote attacker to retrieve arbitrary files from affected View Servers. Exploitation of this issue may expose sensitive information stored on the server.WorkaroundsThis vulnerability affects both the View Connection Server and the View Security Server; VMware recommends that customers immediately update both servers to a fixed version of View.Customers who are unable to immediately update their View Servers should consider the following options:
CPE | Name | Operator | Version |
---|---|---|---|
view | lt | View 5.1.2 | |
view | lt | View 4.6.2 |