Arbitrary Code Execution Vulnerability in NetIQ Access Manager 4.3 and 4.4

Arbitrary Code Execution Vulnerability in NetIQ Access Manager 4.3 and 4.4

CVE-2017-14803 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In NetIQ Access Manager 4.3 and 4.4, a bug exists in Identity Server when accessing a basic SSO connector and downloading the BasicSSO connector plugins on IE11 where an attacker can execute arbitrary code on the system.

Learn more about our Cis Benchmark Audit For Server Software.