CVE-2014-3460
Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted pathname.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0089 (0.9%)
Percentil: 75.7%
EPSS: 2026-05-06
Afecta
microfocus:sentinelmicrofocus:sentinel_agent_managerDescripción técnica
Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted pathname.
Publicada: 20/5/2014, 11:13:38
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://secunia.com/advisories/58635
- http://www.novell.com/support/kb/doc.php?id=7015183
- http://www.securityfocus.com/bid/67487
- http://www.securitytracker.com/id/1030434
- http://zerodayinitiative.com/advisories/ZDI-14-134/
- http://secunia.com/advisories/58635
- http://www.novell.com/support/kb/doc.php?id=7015183
- http://www.securityfocus.com/bid/67487