Signature Detail
Short Name |
SSL:NOVELL-ZENWORKS-UL |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
SSL |
Keywords |
Novell ZENworks Configuration Management File Upload |
Release Date |
2014/05/07 |
Update Number |
2372 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SSL: Novell ZENworks Configuration Management File Upload
This signature detects attempts to exploit a known flaw in Novell ZENworks Configuration Management. This vulnerability is caused by insufficient authentication and a directory traversal in the Control Center module that allows arbitrary file uploads. Remote, unauthenticated attackers could exploit this vulnerability by sending crafted packets to the affected service. Successful exploitation would allow the attacker to execute arbitrary code on the machine running the vulnerable service with administrative privileges.
Extended Description
The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to conduct directory traversal attacks, and consequently upload and execute arbitrary programs, via a request to TCP port 443.
Affected Products
- novell zenworks_configuration_management 10.3
- novell zenworks_configuration_management 11.2
References
- CVE: CVE-2013-1080