Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-4959
HistoryNov 18, 2012 - 7:55 p.m.

CVE-2012-4959

2012-11-1819:55:01
CWE-22
[email protected]
web.nvd.nist.gov
1

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON

Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a … (dot dot) in a FILE element of an FSFUI record.

Affected configurations

NVD
Node
novellfile_reporterMatch1.0.2

Related

seebug 2
exploitpack 1
metasploit 4
saint 4
prion 1
cvelist 1
packetstorm 2
checkpoint_advisories 1
cve 1
exploitdb 2
nessus 1
openvas 1
cert 1
seebug
seebug
Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability (0day)
2014-07-01 00:00:00
NFR Agent FSFUI Record File Upload RCE
2014-07-01 00:00:00
exploitpack
exploitpack
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
metasploit
metasploit
NFR Agent SRS Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent FSFUI Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent Heap Overflow Vulnerability
2012-11-16 15:03:09
saint
saint
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
prion
prion
Directory traversal
2012-11-18 19:55:00
cvelist
cvelist
CVE-2012-4959
2022-10-03 16:15:34
packetstorm
packetstorm
Novell File Reporter Code Execution
2012-12-12 00:00:00
NFR Agent FSFUI Record File Upload Remote Command Execution
2012-11-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell File Reporter FSFUI File Upload (CVE-2012-4959)
2012-12-10 00:00:00
cve
cve
CVE-2012-4959
2022-10-03 16:15:34
exploitdb
exploitdb
Novell File Reporter (NFR) Agent FSFUI Record - Arbitrary File Upload / Remote Code Execution (Metasploit)
2012-11-19 00:00:00
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
nessus
nessus
Novell File Reporter Agent FSFUI UICMD 126 Arbitrary File Download
2012-11-20 00:00:00
openvas
openvas
Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities
2012-12-12 00:00:00
cert
cert
Novell File Reporter contains multiple vulnerabilities
2012-11-16 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON
Related for NVD:CVE-2012-4959
seebug2exploitpack1metasploit4saint4prion1cvelist1packetstorm2checkpoint_advisories1cve1exploitdb2nessus1openvas1cert1