6 matches found
Novell ZENworks Asset Management File Upload Directory Traversal - Ver2 (CVE-2010-4229)
A directory traversal vulnerability has been reported in Novell ZENworks. The vulnerability is due to improper handling of path names when uploading files via ZENworks Asset Management. Successful exploitation of this vulnerability would allow a remote attacker to list directories, create arbitra...
Novell ZENworks Asset Management File Upload Directory Traversal - Ver2 (CVE-2010-4229)
The vulnerability is triggered when the application processes specially crafted POST request. . A directory traversal vulnerability has been reported in Novell ZENworks Configuration Management. This is a directory traversal vulnerability in Novell ZENworks Configuration Management. The...
Novell ZENworks Asset Management File Upload Traversal
Added: 05/27/2011 CVE: CVE-2010-4229 BID: 47295 OSVDB: 71872 Background Novell ZENworks is a resource management solution consisting of a management server and management agents. Problem The Asset Management module ZAM of ZENworks version 10.3 prior to 10.3.2 and version 11 fail to validate the...
Novell ZENworks Asset Management File Upload Traversal
Added: 05/27/2011 CVE: CVE-2010-4229 BID: 47295 OSVDB: 71872 Background Novell ZENworks is a resource management solution consisting of a management server and management agents. Problem The Asset Management module ZAM of ZENworks version 10.3 prior to 10.3.2 and version 11 fail to validate the...
CVE-2010-4229
CVE-2010-4229 is a directory traversal vulnerability in the Inventory component (ZENworks Asset Management) of Novell ZENworks Configuration Management. Affects ZENworks 10.3 before 10.3.2 and version 11. The flaw arises from improper handling of uploaded file names, enabling an attacker to trave...
ZDI-11-118: Novell ZENworks Asset Management Path Traversal File Overwrite Remote Code Execution Vulnerability
ZDI-11-118: Novell ZENworks Asset Management Path Traversal File Overwrite Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-118 April 11, 2011 -- CVE ID: CVE-2010-4229 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Novell -- Affected Products:...