VMware this week released a patch for the product VMware View, eliminating critically dangerous vulnerability that could allow unauthorized users to gain access to the target file system.
“VMware View contains a critical vulnerability when working with directories, allow unauthorized users to get the directories and files from the server View. Exploitation of this vulnerability could result in the release of classified information to the server,” – the document says VMware.
This vulnerability became aware of Digital Defence, which has warned VMware in October this year. Independent experts say that in this case the risk is mainly exposed to large corporate users who are using virtualization in their networks. In this case, the potential employee, an attacker could gain access to restricted files on the server and PC with VMware View.
You can download the patch at http://www.vmware.com/security/advisories/VMSA-2012-0017.html