CVE-2012-3569 Information

Description

Format string vulnerability in VMware OVF Tool 2.1 on Windows as used in VMware Workstation 8.x before 8.0.5 VMware Player 4.x before 4.0.5 and other products allows user-assisted remote attackers to execute arbitrary code via a crafted OVF file.

Reference

http://osvdb.org/87117 http://packetstormsecurity.com/files/120101/VMWare-OVF-Tools-Format-String.html http://secunia.com/advisories/51240 http://technet.microsoft.com/en-us/security/msvr/msvr13-002 http://www.vmware.com/security/advisories/VMSA-2012-0015.html https://exchange.xforce.ibmcloud.com/vulnerabilities/79922