Security Advisory

CVE-2013-1080

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-03-29 10:00:00

Last updated 2024-08-06 14:49:20

Assigner mitre

State PUBLISHED

Description

The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to conduct directory traversal attacks, and consequently upload and execute arbitrary programs, via a request to TCP port 443.

← Browse all CVEs View on cve.org ↗