Novell ZENworks Mobile Management DUSAP.php Remote Code Execution Vulnerability

2013-05-29T00:00:00
ID ZDI-13-088
Type zdi
Reporter rgod
Modified 2013-11-09T00:00:00

Description

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks Mobile Management . Authentication is not required to exploit this vulnerability.

The specific flaw exists within DUSAP.php, which receives a 'language' variable which later is used to include arbitrary resources from the local filesystem via require_once(). A remote attacker can abuse this to execute remote code under the context of the process running.