The remote Windows host contains a license management application installed that allows execution of arbitrary code.
The version of FlexNet License Manager installed on the remote Windows host is earlier than 220.127.116.11. As such, it is potentially affected by multiple vulnerabilities : - Multiple problems exist that allow an attacker to influence the saving and loading of log files on the server. By utilizing a directory traversal issue and some file renaming bugs, an attacker can leverage these vulnerabilities to execute arbitrary code subject to the user running the affected application. - A buffer overflow vulnerability exists that coul lead to arbitrary code execution.
If using IBM Rational License Key Server, apply the vendor-supplied hotfix. Otherwise, upgrade the FlexNet lmgrd License Server Manager to 18.104.22.168 / 11.10.1 or later.