📄 NFR Agent 1.0.4.2 Arbitrary File Delete

The code exploits a vulnerability in the Novell File Reporter Agent versions 1.0.4.2 and below, which allows an attacker to remotely delete any file on the targeted system...

CVE-2011-2750

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/novellfilereporterfiledelete.rb 2025-02-06 03:13:40+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:56+00:00...

Novell File Reporter Agent Arbitrary File Delete

NFRAgent.exe in Novell File Reporter allows remote attackers to delete arbitrary files via a full pathname in an SRS request with OPERATION set to 4 and CMD set to 5 against /FSF/CMD. This module has been tested successfully on NFR Agent 1.0.4.3 File Reporter 1.0.2 and NFR Agent 1.0.3.22 File...

CVE-2011-2750

CVE-2011-2750 affects Novell File Reporter NFRAgent.exe; prior versions up to 1.0.4.2 (and earlier) allow remote deletion of arbitrary files via a full pathname in an SRS request (OPERATION 4, CMD 5 to /FSF/CMD). Public material confirms PoC/exploit code (Metasploit module) and reports of an arbi...