3 matches found
Novell ZENworks Configuration Management Arbitrary File Upload
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Novell ZENworks Configuration Management Arbitrary File Upload', 'Description' = %q This module exploits a file upload vulnerability...
Novell ZENworks Configuration Management Remote Execution
This module exploits a code execution flaw in Novell ZENworks Configuration Management 10.2.0. By exploiting the UploadServlet, an attacker can upload a malicious file outside of the TEMP directory and then make a secondary request that allows for arbitrary code execution. This module requires...
PoC for ZDI-10-078
Exploit Title: ZDI-10-078: NovellZENworks Configuration Management UploadServlet Remote Code Execution Vulnerability Date: 2009-04-26 Author: tucanalamigo http://tucanalamigo.blogspot.com Software Link: http://www.novell.com/products/zenworks/configurationmanagement/ Version: 10.2 Tested on:...