Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61631
HistoryMar 04, 2014 - 12:00 a.m.

Novell ZENworks Configuration Management目录遍历漏洞

2014-03-0400:00:00
Root
www.seebug.org
15

EPSS

0.938

Percentile

99.2%

JSON

BUGTRAQ ID: 65912
CVE(CAN) ID: CVE-2013-3706

Novell ZENworks Configuration Management是ZENworks系统网关工具中的配置管理解决方案。

Novell ZENworks Configuration Management 11.2版本的PreBoot服务相关输入没有被正确验证即用于读取文件,这可使恶意用户通过目录遍历序列泄露任意文件的内容。
0
Novell ZENworks Configuration Management 11.2
厂商补丁:

Novell

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://support.novell.com/security-alerts
http://www.novell.com/support/kb/doc.php?id=7014663

Related

zdi 1
cvelist 1
nvd 1
checkpoint_advisories 1
prion 1
nessus 1
cve 1
zdi
zdi
Novell ZENworks Configuration Management PreBoot Service Information Disclosure Vulnerability
2014-04-03 00:00:00
cvelist
cvelist
CVE-2013-3706
2014-03-06 11:00:00
nvd
nvd
CVE-2013-3706
2014-03-06 11:55:04
checkpoint_advisories
checkpoint_advisories
Novell ZENworks Configuration Management PreBoot Directory Traversal (CVE-2013-3706)
2014-04-27 00:00:00
prion
prion
Directory traversal
2014-03-06 11:55:00
nessus
nessus
Novell ZENworks Configuration Management < 11.3.0.35304 PreBoot Service Directory Traversal
2014-03-05 00:00:00
cve
cve
CVE-2013-3706
2014-03-06 11:55:04

EPSS

0.938

Percentile

99.2%

JSON
Related for SSV:61631
zdi1cvelist1nvd1checkpoint_advisories1prion1nessus1cve1