1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Novell ZENworks CVE-2011-2657 2

Web Attack: Novell ZENworks CVE-2011-2657 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a vulnerability in Novell ZENworks which may allow arbitrary code to execute in the context of the application.

Additional Information

Novell ZENworks Configuration Management is an application that Automates IT management and business processes.

Novell ZENworks Configuration Management is prone to the following remote code-execution vulnerabilities:

1. A remote code-execution vulnerability affects the 'DoFindReplace()' method of the 'SIGrid.Grid.1' ActiveX control when handling data passed to the 'bstrReplaceText' parameter.

2. A remote code-execution vulnerability affects the 'Antique' ActiveX control.

3. A remote code-execution vulnerability affects the 'LaunchHelp.dll' ActiveX control. This issue affects the Launch process functionality.

Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts likely result in denial-of-service conditions.

Affected

  • Novell ZENworks
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube