CVE-2007-1119 - Unspecified vulnerability in Novell ZENworks 7 Desktop Management Support Pack 1 before Hot patch 3

CVE-2007-1119

Summary

Unspecified vulnerability in Novell ZENworks 7 Desktop Management Support Pack 1 before Hot patch 3 (ZDM7SP1HP3) allows remote attackers to upload images to certain folders that were not configured in the "Only allow uploads to the following directories" setting via unspecified vectors.

References

Vulnerable Configurations

cpe:2.3:a:novell:zenworks:7:sp1:*:*:*:*:*:*
cpe:2.3:a:novell:zenworks:7:sp1:*:*:*:*:*:*

CVSS

Base:	6.4 (as of 08-03-2011 - 02:51)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:N

refmap via4

bid	22686
confirm	https://secure-support.novell.com/KanisaPlatform/Publishing/408/3563780_f.SAL_Public.html https://secure-support.novell.com/KanisaPlatform/Publishing/650/3484245_f.SAL_Public.html
osvdb	33533
secunia	24274
vupen	ADV-2007-0712

Last major update

08-03-2011 - 02:51

Published

27-02-2007 - 02:28

Last modified

08-03-2011 - 02:51