CVE-2011-4135

Published Jan 19, 2012

Last updated 13 years ago

Overview

Description: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-22

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:flexerasoftware:flexnet_publisher:11.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F7E37E7-9BE3-4BC7-B49E-8352530B2E74"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References