NFRAgent.exe in Novell File Reporter file delete (CVE-2011-2750)
|Check Point Reference:||CPAI-2013-005|
|Protection Provided by:||
Who is Vulnerable?
Novell File Reporter Prior to 18.104.22.168
A policy bypass vulnerability affects Novell File Reporter Prior to 22.214.171.124 A remote unauthenticated attacker can leverage the vulnerability to delete arbitrary files, including system files, from the affected server, resulting in loss of data and denial of service conditions.
DESIGN WEAKNESS by sending a crafted request using OPERATION 4 commands, respectively.
this command will block any attempts to use this exploit.
To configure the defense, select your product from the list below and follow the related protection steps.