Signature Detail
Short Name |
HTTP:NOVELL-NETIQ-MOD-POLBYPAS |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Novell NetIQ Privileged User Manager modifyAccounts Policy Bypass |
Release Date |
2013/01/02 |
Update Number |
2219 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Novell NetIQ Privileged User Manager modifyAccounts Policy Bypass
This signature detects a known policy bypass vulnerability in the Novell NetIQ Privileged User Manager. It is due to an access control weakness when handling a modifyAccounts request. A remote, unauthenticated attacker can exploit this vulnerability by sending a malicious request to a vulnerable server. Successful exploitation could result in code execution under the context of SYSTEM.
Extended Description
The pa_modify_accounts function in auth.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x before 2.3.1 HF2 does not require authentication for the modifyAccounts method, which allows remote attackers to change the passwords of administrative accounts via a crafted application/x-amf request.
Affected Products
- netiq privileged_user_manager 2.3.0
- netiq privileged_user_manager 2.3.1
References
- BugTraq: 56535
- CVE: CVE-2012-5930