Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-4958
cve-2012-4958
directory traversal
nfragent.exe
novell file reporter
remote attackers
arbitrary files
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.948 High
EPSS
Percentile
99.3%
Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to read arbitrary files via a 126 /FSF/CMD request with a … (dot dot) in a FILE element of an FSFUI record.
Affected configurations
Node
novellfile_reporterMatch1.0.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| novell:file_reporter | novell file reporter | eq | 1.0.2 |
Related
checkpoint_advisories
checkpoint_advisories
Novell File Reporter FSFUI Arbitrary File Retrieval (CVE-2012-4958)
2013-01-13 00:00:00
cvelist
cvelist
CVE-2012-4958
2022-10-03 16:15:33
prion
prion
Directory traversal
2012-11-18 19:55:00
nvd
nvd
CVE-2012-4958
2012-11-18 19:55:01
nessus
nessus
Novell File Reporter Agent FSFUI UICMD 126 Arbitrary File Download
2012-11-20 00:00:00
openvas
openvas
Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities
2012-12-12 00:00:00
cert
cert
Novell File Reporter contains multiple vulnerabilities
2012-11-16 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.948 High
EPSS
Percentile
99.3%
Related for CVE-2012-4958