Quest vWorkspace 7.5 Connection Broker Client ActiveX Control (pnllmcli.dll 7.5.304.547) SaveMiniLaunchFile() Method Remote File Creation / Overwrite

vendor:

Quest vWorkspace 7.5

by:

rgod

8,8

CVSS

HIGH

Remote File Creation / Overwrite

CWE

Product Name: Quest vWorkspace 7.5

Affected Version From: 7.5.304.547

Affected Version To: 7.5.304.547

Patch Exists: Yes

Related CWE: N/A

CPE: a:quest_software:vworkspace_7.5

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: IE7/8

2009

Quest vWorkspace 7.5 Connection Broker Client ActiveX Control (pnllmcli.dll 7.5.304.547) SaveMiniLaunchFile() Method Remote File Creation / Overwrite

The Quest vWorkspace 7.5 Connection Broker Client ActiveX Control (pnllmcli.dll 7.5.304.547) contains a vulnerability in the SaveMiniLaunchFile() method that allows a remote attacker to create or overwrite files on the vulnerable system. This vulnerability can be exploited by an attacker to create or overwrite arbitrary files on the vulnerable system. The vulnerability is due to the lack of proper input validation when handling the file path argument of the SaveMiniLaunchFile() method. An attacker can exploit this vulnerability by crafting a malicious HTML page that contains a specially crafted JavaScript code that calls the SaveMiniLaunchFile() method with a malicious file path argument.

Mitigation:

The vendor has released a patch to address this vulnerability. Users should upgrade to the latest version of the Quest vWorkspace 7.5 Connection Broker Client ActiveX Control.

Source

Quest vWorkspace 7.5 Connection Broker Client ActiveX Control (pnllmcli.dll 7.5.304.547) SaveMiniLaunchFile() Method Remote File Creation / Overwrite

Mitigation:

Exploit-DB raw data: