Intrusion Prevention

Novell.Service.Desk.ClientImportUploadForm.Directory.Traversal

Description

This indicates an attack attempt against a Directory Traversal vulnerability in the Novell Service Desk.
The vulnerability is caused by an error when the vulnerability software handles a crafted HTTP request. A remote attacker can exploit this to execute arbitrary code within the vulnerable application via a crafted request.

Affected Products

Novell Service Desk prior to 7.2.0

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.novell.com/support/kb/doc.php?id=7017428

CVE References

CVE-2016-1593