Lucene search

[email protected]CVE-2011-2653

HistoryDec 08, 2011 - 11:55 a.m.

CVE-2011-2653

2011-12-0811:55:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2011-2653

directory traversal

novell zenworks asset management

zam 7.5

remote code execution

vulnerability

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.943 High

EPSS

Percentile

99.2%

JSON

Directory traversal vulnerability in the rtrlet component in Novell ZENworks Asset Management (ZAM) 7.5 allows remote attackers to execute arbitrary code by uploading an executable file.

CPENameOperatorVersion
novell:zenworks_asset_managementnovell zenworks asset managementeq7.5

CPE	Name	Operator	Version
novell:zenworks_asset_management	novell zenworks asset management	eq	7.5

References

download.novell.com/Download?buildid=hPvHtXeNmCU~

zerodayinitiative.com/advisories/ZDI-11-342/

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.943 High

EPSS

Percentile

99.2%

JSON

Related for CVE-2011-2653

packetstorm1 zdi1 checkpoint_advisories1 dsquare1 prion1 saint4 d21 securityvulns2