Intrusion Prevention

VMware.Vielib.dll.ActiveX.Code.Execution

Description

The ActiveX control in vielib.dll in VMware has a remote code execution vulnerability. A remote attacker could execute a program on a victim system via the StartProcess method.

Affected Products

vielib.dll 2.2.5.42958 in VMware 6.0.0

Impact

System compromise, remote code execution.

Recommended Actions

Currently we are not aware of any official supplied fix for this issue.

CVE References

CVE-2007-4058