Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:LANDESK-THINKMGT-DIRTRVRSAL

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 LANDesk ThinkManagement Suite SetTaskLogByFile Directory Traversal

Release Date

 2013/01/08

Update Number

 2223

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: LANDesk ThinkManagement Suite SetTaskLogByFile Directory Traversal


This signature detects attempts to exploit a known vulnerability against LANDesk ThinkManagement Suite. Attackers can traverse arbitrary directories on the server resulting in the attacker accessing areas of the system otherwise unintended to be accessed externally.

Extended Description

Lenovo ThinkManagement Console is prone to multiple security-bypass vulnerabilities. Successfully exploiting these issues will allow attackers to bypass security restrictions and perform unauthorized actions. Lenovo ThinkManagement Console 9.0.3 is vulnerable; other versions may also be affected.

Affected Products

  • LANDesk Software Lenovo ThinkManagement Console 9.0.3

References

  • BugTraq: 52023
  • CVE: CVE-2012-1196

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out