VMware Vielib.DLL ActiveX Control Multiple Remote Code Execution Vulnerabilities

info
discussion
exploit
solution
references

VMware Vielib.DLL ActiveX Control Multiple Remote Code Execution Vulnerabilities

To exploit these issues, an attacker must entice an unsuspecting user to view a maliciously crafted web page.

UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following exploit is available:

/data/vulnerabilities/exploits/25131.html