Security Advisory

CVE-2013-1079

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-29 10:00:00

Last updated 2024-09-16 16:52:44

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in the ISCreateObject method in an ActiveX control in InstallShieldISProxy.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.3 through 11.2 allows remote attackers to execute arbitrary local DLL files via a crafted web page that also calls the Initialize method.

← Browse all CVEs View on cve.org ↗