Multiple Unquoted Windows Search Path Vulnerabilities in Novell ZENworks Desktop Management
CVE-2013-1092

Currently unrated

Key Information:

Vendor: Novell
Status: Zenworks Desktop Management
Vendor: CVE Published:; 5 May 2013

What is CVE-2013-1092?

Multiple unquoted search path vulnerabilities exist in Novell ZENworks Desktop Management versions 7 through 7.1, which may allow local users to execute arbitrary code with elevated privileges. This can be exploited by placing a malicious file in the C: directory, linked to the execution of key executables such as ZenRem32.exe or wm.exe. If successful, this exploitation can compromise system integrity and security.

References

http://download.novell.com/Download?buildid=hT-LlTRPOfw~

x_refsource_CONFIRM

http://www.novell.com/support/kb/doc.php?id=7012147

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 5, 2013