Directory Traversal Vulnerability in Novell File Reporter 1.0.2

CVE-2012-4959 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a .. (dot dot) in a FILE element of an FSFUI record.

Learn more about our Web Application Penetration Testing UK.