RSS   Vulnerabilities for 'Management gateway'   RSS

2010-11-15
 
CVE-2010-2892

CWE-20
 

 
gsb/drivers.php in LANDesk Management Gateway 4.0 through 4.0-1.48 and 4.2 through 4.2-1.8 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the DRIVES parameter, as demonstrated by a cross-site request forgery (CSRF) attack.

 

 >>> Vendor: Landesk 5 Products
Landesk management suite
Landesk security suite
Landesk server manager
Management gateway
Lenovo thinkmanagement console


Copyright 2024, cxsecurity.com

 

Back to Top