Signature Detail

Security Intelligence Center

Short Name	HTTP:NOVELL:REPORTER-AGENT
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Novell File Reporter Agent XML Parsing Remote Code Execution
Release Date	2012/12/16
Update Number	2211
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Novell File Reporter Agent XML Parsing Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Novell File Reporter Agent. A successful attack can lead to arbitrary code execution.

References

BugTraq: 56579
CVE: CVE-2012-4959
CVE: CVE-2012-4958
CVE: CVE-2012-4956
URL: https://community.rapid7.com/community/metasploit/blog/2012/11/16/nfr-agent-buffer-vulnerabilites-cve-2012-4959

|

|