Advisory Details

April 22nd, 2015

Novell Zenworks com.novell.zenworks.inventory.rtr.actionclasses.wcreports Information Disclosure Vulnerability

ZDI-15-152
ZDI-CAN-2578

CVE ID CVE-2015-0785
CVSS SCORE 5, (AV:N/AC:L/Au:N/C:P/I:N/A:N)
AFFECTED VENDORS Novell
AFFECTED PRODUCTS Zenworks
VULNERABILITY DETAILS


This vulnerability allows attackers to obtain sensitive information on vulnerable installations of Novell Zenworks. User interaction is not required to exploit this vulnerability.

The specific flaw exists within com.novell.zenworks.inventory.rtr.actionclasses.wcreports. The issue lies in the failure to sanitize the path of the "dirname" variable. The attacker can leverage this to disclose the contents of folders on the system.

ADDITIONAL DETAILS Novell has issued an update to correct this vulnerability. More details can be found at:
https://www.novell.com/support/kb/doc.php?id=7016431
DISCLOSURE TIMELINE
  • 2015-01-15 - Vulnerability reported to vendor
  • 2015-04-22 - Coordinated public release of advisory
CREDIT Anonymous
BACK TO ADVISORIES