VMware Releases Security Advisory VMSA-2016-0015 for Horizon View
VMware released VMSA-2016-0015 which documents an Important severity issue in VMware Horizon View.
VMware Horizon View updates address directory traversal vulnerability.
2. Relevant Products
VMware Horizon View
3. Problem Description
VMware Horizon View updates address directory traversal vulnerability
VMware Horizon View contains a vulnerability that may allow for a directory traversal on the Horizon View Connection Server. Exploitation of this issue may lead to a partial information disclosure.
VMware would like to thank Mike Arnold (Bruk0ut) working with Trend Micro’s Zero Day Initiative for reporting this issue to us.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2016-7087 to this issue.
Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.
Learn more and read the entire article here, VMware Security Advisory VMSA-2016-0015
via the fine folks at VMware!