Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:BD940A1E6DB85F37FB03C3CC0D5FC1FC
HistoryOct 09, 2012 - 12:00 a.m.

Novell ZENworks Asset Management rtrlet File Upload Traversal

2012-10-0900:00:00
SAINT Corporation
www.saintcorporation.com
18

0.971 High

EPSS

Percentile

99.7%

JSON

Added: 10/09/2012
CVE: CVE-2011-2653
BID: 50966
OSVDB: 77583

Background

Novell ZENworks is a resource management solution consisting of a management server and management agents.

Problem

The Asset Management module (ZAM) of ZENworks version 7.5 fails to validate the name of uploaded files via POST requests to the /rtrlet/ resource. An attacker may exploit this behavior to upload an executable Java file while traversing the directory structure, such that the uploaded file will be executed by the server.

Resolution

Apply the vendor supplied patch.

References

<http://www.zerodayinitiative.com/advisories/ZDI-11-342/&gt;

Limitations

This exploit has been tested against Novell ZENworks Asset Management 7.5 on Windows Server 2003 SP2 English (DEP OptOut) and Windows Server 2008 SP2 English (DEP OptOut). The exploit may not execute immediately. It may take 15 seconds or more before the payload is executed. This exploit creates a remote shell web application named ‘exploit’ on the webserver. This application remains after the connection is closed and must be manually removed.

Platforms

Windows

Related

packetstorm 1
zdi 1
cve 1
checkpoint_advisories 1
prion 1
dsquare 1
securityvulns 2
saint 3
cvelist 1
d2 1
packetstorm
packetstorm
Novell ZENworks Asset Management Remote Execution
2012-08-14 00:00:00
zdi
zdi
Novell ZENworks Asset Management Remote Code Execution Vulnerability
2011-12-07 00:00:00
cve
cve
CVE-2011-2653
2011-12-08 11:55:00
checkpoint_advisories
checkpoint_advisories
Novell ZENworks Asset Management Directory Traversal (CVE-2011-2653)
2013-06-06 00:00:00
prion
prion
Directory traversal
2011-12-08 11:55:00
dsquare
dsquare
Novell ZENWorks Asset Management 7.5 File Upload
2012-04-30 00:00:00
securityvulns
securityvulns
ZDI-11-342 : Novell ZENworks Asset Management Remote Code Execution Vulnerability
2011-12-11 00:00:00
Novell ZENworks Asset Management directory traversal
2011-12-11 00:00:00
saint
saint
Novell ZENworks Asset Management rtrlet File Upload Traversal
2012-10-09 00:00:00
Novell ZENworks Asset Management rtrlet File Upload Traversal
2012-10-09 00:00:00
Novell ZENworks Asset Management rtrlet File Upload Traversal
2012-10-09 00:00:00
cvelist
cvelist
CVE-2011-2653
2022-10-03 16:15:16
d2
d2
DSquare Exploit Pack: D2SEC_ZAM
2011-12-08 11:55:00

0.971 High

EPSS

Percentile

99.7%

JSON
Related for SAINT:BD940A1E6DB85F37FB03C3CC0D5FC1FC
packetstorm1zdi1cve1checkpoint_advisories1prion1dsquare1securityvulns2saint3cvelist1d21