NVD

Id
86622  
Name
CVE-2017-4918  
Description
VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection vulnerability in the service startup script. Successful exploitation of this issue may allow unprivileged users to escalate their privileges to root on the Mac OSX system where the client is installed.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-07-18  
Published
2017-06-08  
Modified Date
2017-07-07  
Seq
2017-4918  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
420382 86622 CVE-2016-1558 http://packetstormsecurity.com/files/135956/D-Link-Netgear-FIRMADYNE-Command-Injection-Buffer-Overflow.html  View
420383 86622 CVE-2016-1558 20160225 D-Link, Netgear Router Vulnerabiltiies  View
420384 86622 CVE-2016-1558 http://www.dlink.com/mk/mk/support/support-news/2016/march/16/firmadyne-cve_2016_1558-cve_2016_1559  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
68587 JVNDB-2017-004844 VMware Horizon View Client のサービススタートアップスクリプトにおけるコマンドインジェクションの脆弱性 VMware Horizon View Client のサービススタートアップスクリプトには、コマンドインジェクションの脆弱性が存在します。 CVE-2017-4918 0 CVE-2017-4918 86622 10 9.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-004844.html 2017-06-08 2017-07-07 View