NVD

Id
9400  
Name
CVE-2011-2657  
Description
Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 allows remote attackers to execute arbitrary commands via a pathname in the first argument.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2012-07-26  
Modified Date
2012-07-27  
Seq
2011-2657  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
53637 9400 CVE-2011-2657 19718  View
53638 9400 CVE-2011-2657 http://www.novell.com/support/kb/doc.php?id=7009570  View
53639 9400 CVE-2011-2657 http://www.zerodayinitiative.com/advisories/ZDI-11-318/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
34861 JVNDB-2011-005103 Novell ZENworks Configuration Management の AdminStudio におけるディレクトリトラバーサルの脆弱性 Novell ZENworks Configuration Management (ZCM) の AdminStudio の LaunchHelp.dll 内の LaunchHelp.HelpLauncher.1 ActiveX コントロールの LaunchProcess 関数には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2011-2657 50564 CVE-2011-2657 9400 6.8 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-005103.html 2011-10-14 2012-07-30 View