CVE-2011-4135
published 2012-01-19CVE-2011-4135: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute…
PriorityP268critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
31.86%
98.1th percentile
Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flexerasoftware | flexnet_publisher | — | — |
| ibm | rational_license_key_server | — | — |
| ibm | rational_license_key_server | — | — |
| ibm | rational_license_key_server | — | — |
| ibm | rational_license_key_server | — | — |
| ibm | rational_license_server | — | — |
| ibm | rational_license_server | — | — |
| ibm | rational_license_server | — | — |
| ibm | telelogic_license_server | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor for directory traversal sequences in network traffic directed at the vendor daemon / license server (save, rename, load operations on log files) ↗
- →Detect high-volume repeated connections to the lmgrd service from a single source, as the exploit makes many connections per attempt to maximize reliability ↗
- →Inspect network packets to lmgrd for oversized payloads indicative of a stack buffer overflow triggered via unsafe memcpy ↗
- ·CVE-2011-4135 may overlap with CVE-2011-1389; both relate to the same vendor daemon / license server components and should be treated as potentially the same vulnerability class ↗
- ·Affected products span multiple IBM Rational license server product lines and versions; ensure coverage across Telelogic License Server 2.0, Rational License Server 7.x, and RLKS 8.0–8.1.2 ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2r8x-hfx4-m6x7: Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2011-1389 [CRITICAL] CWE-22 GHSA-2r8x-hfx4-m6x7: Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2
Multiple directory traversal vulnerabilities in the vendor daemon in Rational Common Licensing in Telelogic License Server 2.0, Rational License Server 7.x, and ibmratl in IBM Rational License Key Server (RLKS) 8.0 through 8.1.2 allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-4135.
GHSA
GHSA-mr3r-vxqv-xfwv: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2011-4135 [CRITICAL] CWE-22 GHSA-mr3r-vxqv-xfwv: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11
Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.
No detection rules found.
No writeups or analysis indexed.
http://kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1http://secunia.com/advisories/45615http://www.flexerasoftware.com/pl/13057.htmhttp://www.ibm.com/support/docview.wss?uid=swg21577760http://www.securityfocus.com/bid/49191http://www.zerodayinitiative.com/advisories/ZDI-11-272/http://kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1http://secunia.com/advisories/45615http://www.flexerasoftware.com/pl/13057.htmhttp://www.ibm.com/support/docview.wss?uid=swg21577760http://www.securityfocus.com/bid/49191http://www.zerodayinitiative.com/advisories/ZDI-11-272/
2012-01-19
Published