Critical VMware Vulnerability, Exploit Released

BaCa writes "Core Security has issued an advisory disclosing a vulnerability that could severely impact organizations relying on VMware's desktop virtualization software. It involves directory traversal using VMware's shared folders, and could allow an attacker access to the host system from a guest VM. Core also released an exploit for the vulnerability."

I'm tired of this closed source argument

[microbee]

Last time I checked, the firefox 2.0.0.12 vulnerability was still not fixed. Funnily enough, more than one people in that thread said "given it's firefox/open source/blah blah, we should expect a fix within 24 hours". Like that had happened. And all the other wonderful things to say when you find bugs in an open source project.

Re:Why use the shared folder feature?

[TopSpin]

and you don't have to add any additional services on the host. Critical thinking isn't something you employ while earning your wage is it? Shared Folders IS AN ADDITIONAL SERVICE. A badly implemented one as well. You would know that if you actually observed the warnings that chronically appear among the system messages on Windows boxes that have this enabled.

On one hand you have robust, OS vendor provided mechanisms for sharing files. On the other you have some highly vertical third party hack with obvious chronic issues and now public exploits. Just what sort of a ****ing moron must you be to choose the latter?