Directory Traversal Vulnerability in NetIQ Privileged User Manager
CVE-2012-5931

Currently unrated

Key Information:

Vendor

Microfocus
Status
Privileged User Manager
Vendor
CVE Published:
24 December 2012

What is CVE-2012-5931?

A directory traversal vulnerability exists in the set_log_config function within regclnt.dll used by NetIQ Privileged User Manager versions prior to 2.3.1 HF2. This allows authenticated remote users to execute directory traversal sequences in a log path, enabling them to create or overwrite files on the server. Proper validation of file paths is critical to prevent these types of vulnerabilities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://download.novell.com/Download?buildid=K6-PmbPjduA~
x_refsource_CONFIRM
https://www.netiq.com/support/kb/doc.php?id=7011385
x_refsource_CONFIRM
http://retrogod.altervista.org/9sg_novell_netiq_i_adv.htm
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.