This host is installed with VMWare Server that is vulnerable to multiple Cross-Site Scripting vulnerabilities.

Successful exploitation will lets attackers to cause a Denial of Service, or compromise a user's system. Impact Level: System/Application

Apply patch, http://kb.vmware.com/kb/1016594 ***** NOTE: Ignore this warning, if above mentioned patch is manually applied. *****

- Multiple vulnerabilities can be exploited to disclose sensitive information, conduct cross-site scripting attacks, manipulate certain data, bypass certain security restrictions, cause a DoS, or compromise a user's system. - Certain unspecified input passed to WebWorks help pages is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in the context of an affected site.

VMware Server version 2.0.2 on Windows.

• http://secunia.com/advisories/37460/
• http://www.vmware.com/security/advisories/VMSA-2009-0017.html
• http://www.webworks.com/Security/2009-0001/

---

Updated on 2015-03-25