What is CVE-2011-2653?

CVE-2011-2653 is a vulnerability in Novell Zenworks_asset_management, classified under Path Traversal. Published 2011-12-08.

Is CVE-2011-2653 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Path Traversal in Novell Zenworks_asset_management

CVE-2011-2653

Directory traversal vulnerability in the rtrlet component in Novell ZENworks Asset Management (ZAM) 7.5 allows remote attackers to execute arbitrary code by uploading an executable file.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.847 (99.4th percentile) — read the EPSS interpretation.

Affected products

Novell Zenworks_asset_management — versions 7.5
N/a — versions n/a

Weakness classification (CWE)

CWE-22 — Path Traversal

Public proof-of-concept exploits

rapid7/metasploit-framework

References

cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_MISC)

Frequently asked questions

What is CVE-2011-2653?: CVE-2011-2653 is a vulnerability in Novell Zenworks_asset_management, classified under Path Traversal. Published 2011-12-08.
Is CVE-2011-2653 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.