SSL: Novell ZENworks Configuration Management File Upload
This signature detects attempts to exploit a known flaw in Novell ZENworks Configuration Management. This vulnerability is caused by insufficient authentication and a directory traversal in the Control Center module that allows arbitrary file uploads. Remote, unauthenticated attackers could exploit this vulnerability by sending crafted packets to the affected service. Successful exploitation would allow the attacker to execute arbitrary code on the machine running the vulnerable service with administrative privileges.
Extended Description
The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to conduct directory traversal attacks, and consequently upload and execute arbitrary programs, via a request to TCP port 443.
Affected Products
Novell zenworks_configuration_management
References
CVE: CVE-2013-1080
Short Name
SSL:NOVELL-ZENWORKS-UL
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SSL
Keywords
CVE-2013-1080 Configuration File Management Novell Upload ZENworks
Release Date
05/07/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Novell
CVSS Score
10.0