Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4135

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-4135
Last Modified 23 Jan 2012 12:00:00
Published 19 Jan 2012 02:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4135

Summary

Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.

Vulnerable Systems

Application

  • Flexerasoftware Flexnet Publisher 11.10


References

MISC - http://www.zerodayinitiative.com/advisories/ZDI-11-272/

BID - 49191

MISC - http://www.ibm.com/support/docview.wss?uid=swg21577760

CONFIRM - http://www.flexerasoftware.com/pl/13057.htm

SECUNIA - 45615

CONFIRM - http://kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1


Last Updated: 27 May 2016 10:58:05