Article
Search:
RSS
VMware View 3.1.3 addresses an important cross-site scripting vulnerability

VMware View Manager 3.1.3 is a maintenance release that resolves some known issues in the previous releases.

VMware View 3.1.3 addresses a cross-site scripting vulnerability in VMware View.  In order for an attacker to exploit the vulnerability, the attacker would need to lure the user to click on the attacker's URL.

Alexey Sintsov from Digital Security Research Group [DSecRG] reported this issue.  And the issue is identifed as DSECRG-09-058 by Digital Security Research Group.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-1143 to this issue.

VMware has rated this issue as important according the the VMware security response policy.

For more information and general installation help, see the release notes.

Published Thursday, May 06, 2010 7:17 AM by David Marshall
Filed under:
Share this post: del.ici.ousDel.ici.ous Digg ThisDigg Newsvine ThisNewsvine Reddit ThisReddit Slashdot It!Slashdot TechnoratiTechnorati
Comments
Twitter Trackbacks for VMware View 3.1.3 addresses an important cross-site scripting vulnerability : VMblog.com - Virtualization Technology News and Information for Everyone [vmblog.com] on Topsy.com - (Author's Link) - May 6, 2010 7:36 AM

PingBack from http://topsy.com/trackback?utm_source=pingback&utm_campaign=L2&url=http://vmblog.com/archive/2010/05/06/vmware-view-3-1-3-addresses-an-important-cross-site-scripting-vulnerability.aspx

To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
CloudComputingWorldForum
vExpert
Calendar
<May 2010>
SuMoTuWeThFrSa
2526272829301
2345678
9101112131415
16171819202122
23242526272829
303112345
Tags
Archives
Links
Events
Platform Technology
Virtualization Sites