Vulnerability Details : CVE-2012-2215
Public exploit exists!
Directory traversal vulnerability in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote attackers to read arbitrary files via an opcode 0x21 request.
Vulnerability category: Directory traversal
Products affected by CVE-2012-2215
- cpe:2.3:a:novell:zenworks_configuration_management:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:zenworks_configuration_management:11.1a:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-2215
0.60%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 79 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2012-2215
-
Novell ZENworks Configuration Management Preboot Service 0x21 Buffer Overflow
Disclosure Date: 2010-03-30First seen: 2020-04-26exploit/windows/novell/zenworks_preboot_op21_bofThis module exploits a remote buffer overflow in the ZENworks Configuration Management 10 SP2. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted packet with the opcode 0x21 (PROXY_CMD_FTP_FILE) to port 998/TCP. The -
Novell ZENworks Configuration Management Preboot Service Remote File Access
First seen: 2020-04-26auxiliary/scanner/misc/zenworks_preboot_fileaccessThis module exploits a directory traversal in the ZENworks Configuration Management. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted PROXY_CMD_FTP_FILE (opcode 0x21) packet to the 998/TCP port. This module has been
CVSS scores for CVE-2012-2215
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2012-2215
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-2215
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/74189
Novell ZENworks Configuration Management PreBoot file download CVE-2012-2215 Vulnerability Report
-
http://www.novell.com/support/viewContent.do?externalId=7010044
ZENworks Configuration Management 11.2 - update information and list of fixes
-
http://www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=975
Protect Your Business with Verisign’s Security Services – Verisign
-
http://download.novell.com/Download?buildid=rs4B5jhWKf8~
Downloads - ZCM 11.1/11.1a fix for PreBoot Service Vulnerabilities - see TID 7009969, TID 7009970 and TID 7009971Patch
-
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5127930.html
Patch
Jump to