Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary code via a crafted WAR pathname in the filename parameter in conjunction with WAR content in the POST data, a different vulnerability than CVE-2010-5324.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell ZENworks Configuration Management Remote Management组件目录遍历漏洞
Vulnerability Description
Novell ZENworks Configuration Management(ZCM)是美国Novell公司的一套配置管理解决方案。该方案可借助集成工具,在物理、虚拟和云环境中实现IT管理和业务流程的自动化。Remote Management是其中的一个远程管理组件。 Novell ZCM 10.3之前10版本的Remote Management组件中的UploadServlet中存在目录遍历漏洞。远程攻击者可借助‘filename’参数中特制的WAR路径名和POST数据中的WAR内容,利用该漏洞执行
CVSS Information
N/A
Vulnerability Type
N/A