CVE-2006-3426

Name of the Vulnerable Software and Affected Versions PatchLink Update Server (PLUS) versions prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1 Novell ZENworks versions prior to 6.2 SR1

Description The issue allows remote attackers to overwrite arbitrary files and directories via a .. (dot dot) sequence in the action, agentid, or index parameters to "dagent/nwupload.asp", which are used as pathname components.

Recommendations For PatchLink Update Server (PLUS) versions prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1, update to version 6.1 P1 or 6.2 SR1 P1 or later. For Novell ZENworks versions prior to 6.2 SR1, update to version 6.2 SR1 or later. As a temporary workaround, consider restricting access to the "dagent/nwupload.asp" endpoint until a patch is available. Avoid using the action, agentid, or index parameters in the affected endpoint until the issue is resolved.