The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote attackers to execute arbitrary code by making RPC calls that leverage incorrect privileges associated with a partially initialized session.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-09-06T15:00:00
Updated: 2024-08-06T23:08:23.750Z
Reserved: 2011-07-06T00:00:00
Link: CVE-2011-2654
Vulnrichment
No data.
NVD
Status : Modified
Published: 2011-09-06T15:55:02.663
Modified: 2011-10-06T02:50:22.190
Link: CVE-2011-2654
Redhat
No data.