CVE-2011-2217

Tom Sawyer GET Extension Factory <5.5.2.237 - Memory Corruption

Title source: llm

Description

Certain ActiveX controls in (1) tsgetxu71ex552.dll and (2) tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client (aka VMware Infrastructure Client) 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted initialization within Internet Explorer, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HTML document.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/19030

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Elazar Broad, rgod, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/tom_sawyer_tsgetx71ex552.rb

View Code ZIP pw:eip

References (7)

[Vendor Advisory] http://secunia.com/advisories/44826

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1025602

[Vendor Advisory] http://www.vmware.com/security/advisories/VMSA-2011-0009.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/67816

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/48099

[Third Party Advisory] http://secunia.com/advisories/44844

[Third Party Advisory] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=911

Scores

EPSS 0.8806

EPSS Percentile 99.5%

Details

CWE

CWE-119

Status published

Products (4)

tomsawyer/get_extension_factory 5.5.2.237

vmware/infrastructure 3

vmware/virtual_infrastructure_client 2.0.2

vmware/virtual_infrastructure_client 2.5

Published Jun 06, 2011

Tracked Since Feb 18, 2026