Remote Code Execution Vulnerability in Novell Cloud Manager 1.1.2

Remote Code Execution Vulnerability in Novell Cloud Manager 1.1.2

CVE-2011-2654 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote attackers to execute arbitrary code by making RPC calls that leverage incorrect privileges associated with a partially initialized session.

Learn more about our Cis Benchmark Audit For Server Software.