### [CVE-2017-4907](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-4907)
![](https://img.shields.io/static/v1?label=Product&message=Horizon%20View&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Unified%20Access%20Gateway&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2.5.x%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2.7.x%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=2.8.x%20prior%20to%202.8.1%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.x%20prior%20to%206.2.4%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7.x%20prior%20to%207.1.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Heap%20buffer-overflow%20vulnerability&color=brightgreen)

### Description

VMware Unified Access Gateway (2.5.x, 2.7.x, 2.8.x prior to 2.8.1) and Horizon View (7.x prior to 7.1.0, 6.x prior to 6.2.4) contain a heap buffer-overflow vulnerability which may allow a remote attacker to execute code on the security gateway.

### POC

#### Reference
- http://www.vmware.com/security/advisories/VMSA-2017-0008.html

#### Github
No PoCs found on GitHub currently.