Lenovo ThinkManagement Console RunAMTCommand Operation -PutUpdateFileCore Command Parsing Arbitrary File Upload
Critical Nessus Plugin ID 58654
SynopsisThe remote web server hosts an application that allows arbitrary code execution.
DescriptionThe version of Lenovo ThinkManagement Console hosted on the remote web server contains a flaw in the 'ServerSetup.asmx' script that allows a remote, unauthenticated attacker to upload and run arbitrary ASP scripts with the privileges of the web user.
In addition, this version of Lenovo ThinkManagement Console may be affected by a file deletion vulnerability. However, Nessus has not tested for this.
SolutionContact the vendor for patches.