Signature Detail

Short Name	HTTP:NOVELL:ZENWORKS-RTRLET-COM
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Novell ZENWorks Asset Management 'rtrlet' Component Remote Code Execution
Release Date	2012/08/24
Update Number	2178
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Novell ZENWorks Asset Management 'rtrlet' Component Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Novell ZENWorks Asset Management 'rtrlet' Component. A successful attack can lead to arbitrary code execution.

Extended Description

Novell ZENworks Asset Management is prone to a remote code-execution vulnerability. An attacker can leverage this issue to upload an arbitrary file and place it in an arbitrary location on the affected system. Successful exploits will compromise the affected application, and the underlying system.

Affected Products

Novell ZENworks Asset Management 7.5

References

BugTraq: 50966
CVE: CVE-2011-2653
URL: http://download.novell.com/Download?buildid=hPvHtXeNmCU~
URL: http://www.novell.com/products/zenworks/assetmanagement/overview.html

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Novell ZENWorks Asset Management 'rtrlet' Component Remote Code Execution

Extended Description

Affected Products

References