Vulnerability Description
Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C: folder, related to an attempted launch of (1) ZenRem32.exe or (2) wm.exe.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Zenworks Desktop Management | 7 |
References
- http://download.novell.com/Download?buildid=hT-LlTRPOfw~
- http://www.novell.com/support/kb/doc.php?id=7012147Vendor Advisory
- http://download.novell.com/Download?buildid=hT-LlTRPOfw~
- http://www.novell.com/support/kb/doc.php?id=7012147Vendor Advisory
FAQ
What is CVE-2013-1092?
CVE-2013-1092 is a vulnerability with a CVSS score of 7.2 (HIGH). Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C: f...
How severe is CVE-2013-1092?
CVE-2013-1092 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1092?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Zenworks Desktop Management.