Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities Network Vulnerability

Summary

Novell File Reporter is prone to the following security vulnerabilities: 1. A heap-based buffer-overflow vulnerability 2. Multiple arbitrary file-download vulnerabilities 3. An arbitrary file-upload vulnerability Remote attackers can exploit these issues to upload and download arbitrary files and execute arbitrary code in the context of the application. Novell File Reporter 1.0.2 is vulnerable other versions may also be affected.

References

http://www.novell.com/products/file-reporter/
http://www.securityfocus.com/bid/56579

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-4956, CVE-2012-4957, CVE-2012-4958, CVE-2012-4959

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

A Really Simple Chat Multiple SQL Injection Vulnerabilities
ASP Inline Corporate Calendar SQL injection
AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities
ArticleFR CMS Multiple Vulnerabilities - Jan15
Andy's PHP Knowledgebase 's' Parameter SQL Injection Vulnerability

Take action and discover your vulnerabilities