VMware vSphere Data Protection CVE-2017-15549 Arbitrary File Upload Vulnerability

VMware vSphere Data Protection is prone to an arbitrary file-upload vulnerability.

An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application or privilege escalation.

VMware vSphere Data Protection 5.x, 6.1.x and 6.0.x are vulnerable


 

Privacy Statement
Copyright 2010, SecurityFocus