| ID |
CVE-2010-2667
|
| Summary |
Multiple unspecified vulnerabilities in the Virtual Appliance Management Infrastructure (VAMI) in VMware Studio 2.0 allow remote authenticated users to execute arbitrary commands via vectors involving (1) the Studio virtual appliance or (2) a virtual appliance created by the Studio virtual appliance. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 6.0 (as of 10-10-2018 - 19:59) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
SINGLE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:S/C:P/I:P/A:P
|
| refmap
via4
|
| bid | 41566 | | bugtraq | 20100713 VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0. | | confirm | http://www.wmware.com/security/advisories/VMSA-2010-0011.html | | mlist | [security-announce] 20100712 VMSA-2010-0011 VMware Studio 2.1 addresses security vulnerabilities in virtual appliances created with Studio 2.0 | | sectrack | 1024187 | | secunia | 40507 | | vupen | ADV-2010-1791 | | xf | studio-vami-command-execution(60350) |
|
| Last major update |
10-10-2018 - 19:59 |
| Published |
22-07-2010 - 05:43 |
| Last modified |
10-10-2018 - 19:59 |
