Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:C568061064338E8002BF8121043FBD7B
HistoryDec 17, 2012 - 12:00 a.m.

Novell File Reporter FSFUI File Upload

2012-12-1700:00:00
SAINT Corporation
www.saintcorporation.com
16

0.756 High

EPSS

Percentile

98.2%

JSON

Added: 12/17/2012
CVE: CVE-2012-4959
BID: 56579
OSVDB: 87573

Background

Novell File Reporter is software that allows network administrators to identify files stored on the network and generates reports regarding the size of individual files, file type, when files were last accessed, and where duplicates exist. The Novell File Reporter communicates over HTTPS on port 3037/TCP.

Problem

Novell File Reporter contains an arbitrary file upload vulnerability which could allow a remote unauthenticated user to upload and execute arbitrary files with SYSTEM privileges. The specific vulnerability is in the read_file_sub_40A190() function of NFRAgent.exe when handling requests on the URL /FSF/CMD for records with NAME FSFUI, UICMD 130, and tag FILE.

Resolution

Apply an update when it becomes available. Allow only trusted networks and hosts to communicate with the Novell File Reporter agent.

References

<http://www.kb.cert.org/vuls/id/273371&gt;

Limitations

This exploit was tested against Novell File Reporter 1.0.2.1 on Microsoft Windows Server 2003 SP2 English (DEP OptOut).

The IO-Socket-SSL and Digest:MD5 PERL modules must be installed on the scanning host. The IO-Socket-SSL module is available from <http://www.cpan.org/modules/by-module/IO/&gt;. The Digest::MD5 module is available from <http://cpan.org/modules/by-module/MD5/&gt;.

Platforms

Windows

Related

seebug 2
exploitpack 1
metasploit 4
nvd 1
saint 3
prion 1
cvelist 1
cve 1
packetstorm 2
checkpoint_advisories 1
exploitdb 2
nessus 1
cert 1
openvas 1
seebug
seebug
Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability (0day)
2014-07-01 00:00:00
NFR Agent FSFUI Record File Upload RCE
2014-07-01 00:00:00
exploitpack
exploitpack
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
metasploit
metasploit
NFR Agent SRS Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent FSFUI Record Arbitrary Remote File Access
2012-11-16 15:03:09
NFR Agent Heap Overflow Vulnerability
2012-11-16 15:03:09
nvd
nvd
CVE-2012-4959
2012-11-18 19:55:01
saint
saint
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
Novell File Reporter FSFUI File Upload
2012-12-17 00:00:00
prion
prion
Directory traversal
2012-11-18 19:55:00
cvelist
cvelist
CVE-2012-4959
2022-10-03 16:15:34
cve
cve
CVE-2012-4959
2022-10-03 16:15:34
packetstorm
packetstorm
NFR Agent FSFUI Record File Upload Remote Command Execution
2012-11-16 00:00:00
Novell File Reporter Code Execution
2012-12-12 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell File Reporter FSFUI File Upload (CVE-2012-4959)
2012-12-10 00:00:00
exploitdb
exploitdb
Novell File Reporter (NFR) Agent FSFUI Record - Arbitrary File Upload / Remote Code Execution (Metasploit)
2012-11-19 00:00:00
Novell File Reporter (NFR) Agent - XML Parsing Remote Code Execution
2012-12-12 00:00:00
nessus
nessus
Novell File Reporter Agent FSFUI UICMD 126 Arbitrary File Download
2012-11-20 00:00:00
cert
cert
Novell File Reporter contains multiple vulnerabilities
2012-11-16 00:00:00
openvas
openvas
Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities
2012-12-12 00:00:00

0.756 High

EPSS

Percentile

98.2%

JSON
Related for SAINT:C568061064338E8002BF8121043FBD7B
seebug2exploitpack1metasploit4nvd1saint3prion1cvelist1cve1packetstorm2checkpoint_advisories1exploitdb2nessus1cert1openvas1