NFRAgent.exe in Novell File Reporter file delete (CVE-2011-2750)
| Check Point Reference: | CPAI-2013-005 | |
| Date Published: | ||
| Severity: | ||
| Source: | metasploit | |
| Industry Reference(s): | CVE-2011-2750 |
|
| Protection Provided by: |
Security Gateway
|
|
|
Who is Vulnerable? Novell File Reporter Prior to 1.0.4.2 |
||
| Vulnerability Description A policy bypass vulnerability affects Novell File Reporter Prior to 1.0.4.2 A remote unauthenticated attacker can leverage the vulnerability to delete arbitrary files, including system files, from the affected server, resulting in loss of data and denial of service conditions. |
||
|
Vulnerability Details DESIGN WEAKNESS by sending a crafted request using OPERATION 4 commands, respectively. |
Protection Overview
this command will block any attempts to use this exploit.
To configure the defense, select your product from the list below and follow the related protection steps.