The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote malicious users to execute arbitrary code by making RPC calls that leverage incorrect privileges associated with a partially initialized session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell cloud manager 1.1.2 |
||
novell cloud manager |