CVE-2013-1092

EUVD-2013-1132
Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C: folder, related to an attempted launch of (1) ZenRem32.exe or (2) wm.exe.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Affected Products (NVD)
VendorProductVersion
novellzenworks_desktop_management
7.1
𝑥
= Vulnerable software versions
References
http://download.novell.com/Download?buildid=hT-LlTRPOfw~
http://www.novell.com/support/kb/doc.php?id=7012147
http://download.novell.com/Download?buildid=hT-LlTRPOfw~
http://www.novell.com/support/kb/doc.php?id=7012147