Slashdot Mirror


Critical VMware Vulnerability, Exploit Released

BaCa writes "Core Security has issued an advisory disclosing a vulnerability that could severely impact organizations relying on VMware's desktop virtualization software. It involves directory traversal using VMware's shared folders, and could allow an attacker access to the host system from a guest VM. Core also released an exploit for the vulnerability."

2 of 104 comments (clear)

  1. Closed Source by RAMMS+EIN · · Score: 0, Flamebait

    So...do we pounce on VMWare for being closed source and therefore _obviously_ insecure, now?

    --
    Please correct me if I got my facts wrong.
  2. Re:Why use the shared folder feature? by Anonymous Coward · · Score: -1, Flamebait

    I'm not sure conservative was the word you were looking for.

    paranoid?
    ignorant?
    idiotic?

    I hear it's even more secure if you leave the machine turned off entirely!