Arbitrary File Deletion Vulnerability in Novell File Reporter 1.0.4.2 and Earlier

Arbitrary File Deletion Vulnerability in Novell File Reporter 1.0.4.2 and Earlier

CVE-2011-2750 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

NFRAgent.exe in Novell File Reporter 1.0.4.2 and earlier allows remote attackers to delete arbitrary files via a full pathname in an SRS OPERATION 4 CMD 5 request to /FSF/CMD.

Learn more about our Web Application Penetration Testing UK.