Directory Traversal Vulnerability in Novell ZENworks Configuration Management
CVE-2013-1079

Currently unrated

Key Information:

Vendor

Novell
Status
Zenworks Configuration Management
Vendor
CVE Published:
29 March 2013

What is CVE-2013-1079?

A directory traversal vulnerability exists in the ISCreateObject method of an ActiveX control within the InstallShield ISProxy.dll, affecting various versions of Novell ZENworks Configuration Management. This flaw allows remote attackers to exploit crafted web pages to execute arbitrary local DLL files by invoking the Initialize method, potentially compromising system integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.zerodayinitiative.com/advisories/ZDI-13-048/
x_refsource_MISC
http://www.novell.com/support/kb/doc.php?id=7011811
x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.