Novell NetIQ Sentinel Agent Manager NQMcsVarSet ActiveX DumpToFile() Remote Code Execution
Medium Nessus Plugin ID 74261
SynopsisThe remote Windows host has an ActiveX control that is affected by a remote code execution vulnerability.
DescriptionThe remote host contains the NQMcsVarSet ActiveX control distributed with Novell NetIQ Sentinel Agent Manager.
The installed control is reportedly affected by a remote code execution vulnerability with the DumpToFile method where it does not properly sanitize the path for a filename. This could allow a remote attacker, with a specially crafted file or site, to traverse the directories to execute arbitrary code.
SolutionUpdate Novell NetIQ Sentinel Agent Manager to version 7.2 or later, or ensure the kill bit has been set for the NQMcsVarSet ActiveX Control.