Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-4959
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-4959

2022-10-0316:15:34
CWE-22
[email protected]
web.nvd.nist.gov
45
cve
2012
4959
directory traversal
nfragent.exe
novell file reporter
vulnerability
remote attackers
upload
execute files
fsf/cmd request
fsfui record

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON

Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a … (dot dot) in a FILE element of an FSFUI record.

Affected configurations

NVD
Node
novellfile_reporterMatch1.0.2

Related

seebug 2
exploitpack 1
packetstorm 2
metasploit 4
nvd 1
saint 4
cvelist 1
prion 1
checkpoint_advisories 1
exploitdb 2
nessus 1
cert 1
openvas 1
seebug
seebug
Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability (0day)
2014-07-01 00:00:00
NFR Agent FSFUI Record File Upload RCE
2014-07-01 00:00:00
exploitpack
exploitpack
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
packetstorm
packetstorm
NFR Agent FSFUI Record File Upload Remote Command Execution
2012-11-16 00:00:00
Novell File Reporter Code Execution
2012-12-12 00:00:00
metasploit
metasploit
NFR Agent SRS Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent FSFUI Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent Heap Overflow Vulnerability
2012-11-16 15:03:09
nvd
nvd
CVE-2012-4959
2012-11-18 19:55:01
saint
saint
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
cvelist
cvelist
CVE-2012-4959
2022-10-03 16:15:34
prion
prion
Directory traversal
2012-11-18 19:55:00
checkpoint_advisories
checkpoint_advisories
Novell File Reporter FSFUI File Upload (CVE-2012-4959)
2012-12-10 00:00:00
exploitdb
exploitdb
Novell File Reporter (NFR) Agent FSFUI Record - Arbitrary File Upload / Remote Code Execution (Metasploit)
2012-11-19 00:00:00
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
nessus
nessus
Novell File Reporter Agent FSFUI UICMD 126 Arbitrary File Download
2012-11-20 00:00:00
cert
cert
Novell File Reporter contains multiple vulnerabilities
2012-11-16 00:00:00
openvas
openvas
Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities
2012-12-12 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON
Related for CVE-2012-4959
seebug2exploitpack1packetstorm2metasploit4nvd1saint4cvelist1prion1checkpoint_advisories1exploitdb2nessus1cert1openvas1