Novell ZENworks ESM Security Client STEngine Privilege Escalation
High Nessus Plugin ID 29896
SynopsisThe remote Windows host contains an application that is prone to a local privilege escalation vulnerability.
DescriptionNovell ZENworks Endpoint Security Management (ESM) Security Client is installed on the remote host. It provides a centrally-managed, policy-based firewall for enterprise computers.
The version of this software on the remote host dynamically generates various scripts which are then executed by the application in a directory to which local users have write access and also will run them using the file 'cmd.exe' in that directory. A local user can reportedly leverage this issue to execute arbitrary code on the affected host with SYSTEM level privileges.
SolutionUpgrade to ZENworks ESM Security Client 220.127.116.11 or later.