Directory Traversal Vulnerability in Novell ZENworks Configuration Management
CVE-2010-5323

Currently unrated

Key Information:

Vendor

Novell
Status
Zenworks Configuration Management
Vendor
CVE Published:
7 June 2015

What is CVE-2010-5323?

A directory traversal vulnerability exists in the UploadServlet of the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 prior to version 10.3. This flaw allows remote attackers to exploit the system by executing arbitrary code through a specially crafted WAR pathname provided in the filename parameter, combined with malicious WAR content submitted in the POST request. This vulnerability poses a significant risk due to its potential for unauthorized access and control over the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://www.novell.com/support/kb/doc.php?id=7005573
x_refsource_CONFIRM
http://www.zerodayinitiative.com/advisories/ZDI-10-078/
x_refsource_MISC
http://www.exploit-db.com/exploits/16784/
exploitx_refsource_EXPLOIT-DB

EPSS Score

18% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.