Novell ZENworks Mobile Management "language" File Inclusion Vulnerabilities


Description   Two vulnerabilities have been reported in Novell ZENworks Mobile Management, which can be exploited by malicious people to disclose certain sensitive information.
Input passed via the "language" parameter to MDM.php and DUSAP.php is not properly verified before being used to include files. This can be exploited to include arbitrary files via directory traversal sequences.
The vulnerabilities are reported in versions 2.6.0, 2.6.1, and 2.7.0.
     
Vulnerable Products   Vulnerable Software:
Novell ZENworks Mobile Management 2.x
     
Solution   Update to version 2.7.1 when available.
     
CVE   CVE-2013-1082
CVE-2013-1081
     
References   Novell:
http://www.novell.com/support/kb/doc.php?id=7011895
http://www.novell.com/support/kb/doc.php?id=7011896
ZDI-13-088:
http://www.zerodayinitiative.com/advisories/ZDI-13-088/
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Misc : Directory traversal - parameter starting with ../
3.2.0
Directory traversal using ..\..
3.2.0
Directory traversal
3.2.0
Directory traversal backward root folder
3.2.0
     


 
 
 
 
 Risk level 
Low 

 Vulnerability First Public Report Date 
2013-03-08 

 Target Type 
Server 

 Possible exploit 
Remote