VHCS (version <= 18.104.22.168) PoC. By RoMaNSoFt <firstname.lastname@example.org> [08.Feb.2006]
2.- Remember not to use a probably existing username (such as "admin").
3.- Launch the exploit. If target system is vulnerable, a new VHCS admin user will be created ;-)
4.- You will be redirected to VHCS login page. Try to login with your brand new username.
5.- Ummm, I forgot it... The password is: dsrrocks.
More info (analysis, fix, etc).-