This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.
The remote Windows host contains a license management application
installed that allows execution of arbitrary code.
The version of FlexNet License Manager installed on the remote
Windows host is earlier than 126.96.36.199. As such, it is potentially
affected by multiple vulnerabilities :
- Multiple problems exist that allow an attacker to
influence the saving and loading of log files on the
server. By utilizing a directory traversal issue and
some file renaming bugs, an attacker can leverage these
vulnerabilities to execute arbitrary code subject to
the user running the affected application.
- A buffer overflow vulnerability exists that coul lead to
arbitrary code execution.
See also :
If using IBM Rational License Key Server, apply the vendor-supplied
Otherwise, upgrade the FlexNet lmgrd License Server Manager to
188.8.131.52 / 11.10.1 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.8
Public Exploit Available : true