Novell File Reporter 'NFRAgent.exe' Multiple Security Vulnerabilities

Novell File Reporter is prone to the following security vulnerabilities:

1. A heap-based buffer-overflow vulnerability

2. Multiple arbitrary file-download vulnerabilities

3. An arbitrary file-upload vulnerability

Remote attackers can exploit these issues to upload and download arbitrary files and execute arbitrary code in the context of the application.

Novell File Reporter 1.0.2 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus