This script is Copyright (C) 2009-2017 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host.
The version of the Novell Privileged User Manager Daemon running on
the remote host contains a vulnerability that allows execution of
Using a specially crafted 'spf' RPC call, an unauthenticated remote
attacker can load arbitrary modules over the network and hence execute
arbitrary code with the privileges of the daemon itself.
See also :
Install Novell Privileged User Manager Framework Patch version 2.2.0
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true