CVE-2011-4135
Summary
| CVE | CVE-2011-4135 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2012-01-19 19:55:00 UTC |
| Updated | 2012-01-23 05:00:00 UTC |
| Description | Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389. |
Risk And Classification
Problem Types: CWE-22
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Flexerasoftware | Flexnet Publisher | 11.10 | All | All | All |
| Application | Flexerasoftware | Flexnet Publisher | 11.10 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Zero Day Initiative | MISC | www.zerodayinitiative.com | |
| Customer Community | CONFIRM | kb.flexerasoftware.com | Vendor Advisory |
| FlexNet License Server Manager Remote Code Execution Vulnerability | BID | www.securityfocus.com | |
| IT Management Software, Optimization & Solutions | Flexera | CONFIRM | www.flexerasoftware.com | Patch, Vendor Advisory |
| Security Bulletin: Vulnerability in Rational License Key Server affecting both the license server, lmgrd, and the vendor daemon, ibmratl (CVE-2011-1389) | MISC | www.ibm.com | |
| FlexNet Publisher License Manager Log File Upload Vulnerability - Secunia.com | SECUNIA | secunia.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.