Novell File Reporter NFRAgent.exe VOL Tag Remote Code Execution Vulnerability
Schweregrad:: Mittel
CVE Kennungen:: CVE-2011-2750
Hinweisdatum: 21 Juli 2015
Beschreibung
NFRAgent.exe in Novell File Reporter 1.0.4.2 and earlier allows remote attackers to delete arbitrary files via a full pathname in an SRS OPERATION 4 CMD 5 request to /FSF/CMD.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1005232
Trend Micro Deep Security DPI Rule Name: 1005232 - Novell File Reporter 'NFRAgent.exe' VOL Tag Remote Code Execution Vulnerability
Betroffene Software und Version:
- novell file_reporter 1.0.1
- novell file_reporter 1.0.1.1
- novell file_reporter 1.0.2
- novell file_reporter 1.0.4.2