Lucene search

[email protected]CVE-2011-4135

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-4135

2022-10-0316:15:13

CWE-22

[email protected]

web.nvd.nist.gov

cve-2011-4135

directory traversal

lmgrd

flexera flexnet publisher 11.10

flexnet license server manager

remote code execution

log files

cve-2011-1389

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.135 Low

EPSS

Percentile

95.7%

JSON

Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.

Affected configurations

NVD

Node

flexerasoftwareflexnet_publisherMatch11.10

CPENameOperatorVersion
flexerasoftware:flexnet_publisherflexerasoftware flexnet publishereq11.10

CPE	Name	Operator	Version
flexerasoftware:flexnet_publisher	flexerasoftware flexnet publisher	eq	11.10

References

kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1

secunia.com/advisories/45615

www.flexerasoftware.com/pl/13057.htm

www.ibm.com/support/docview.wss?uid=swg21577760

www.securityfocus.com/bid/49191

www.zerodayinitiative.com/advisories/ZDI-11-272/

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.135 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2011-4135

prion2 nvd2 cvelist2 cve1 nessus1 ibm2 kaspersky1