|CVSS SCORE||4.9, (AV:L/AC:L/Au:N/C:N/I:N/A:C)|
The specific flaw exists within the unity.operation.request RPC function. A crafted request can trigger the dereference of a null pointer. An attacker can leverage this vulnerability to create a denial-of-service condition to users of the guest OS.
VMware has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Hahna Latonick and Kevin Fujimoto