VMWare VPX Client Patched

The issue with the VMWare VPX Client that I reported last summer was finally patched last week. The issue was that after using the VPX Client to authenticate with part of the VMWare infrastructure I observed that a plaintext version of the username and password remained resident in memory as long as the client was running. This is an issue because it could be possible for an attacker to use forensic techniques to recover your username and password. The issue was reported as CVE-2009-0518 and can also be found on the VMWare website. http://www.vmware.com/security/advisories/VMSA-2009-0005.html