CyberSec.Space Logo
Back to CVE Browser

CVE-2011-4135

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0030%
EPSS Percentile6.44th
PublishedJan 19, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.

Affected Platforms (CPE)

πŸ“¦
Flexerasoftware

Flexnet Publisher

= 11.10

References & Advisories

πŸ”— http://kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1
πŸ”— http://secunia.com/advisories/45615
πŸ”— http://www.flexerasoftware.com/pl/13057.htm
πŸ”— http://www.ibm.com/support/docview.wss?uid=swg21577760
πŸ”— http://www.securityfocus.com/bid/49191
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-11-272/
πŸ”— http://kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Q200975&sliceId=1
πŸ”— http://secunia.com/advisories/45615

Related Vulnerabilities

CVE-2011-413410.0

Heap-based buffer overflow in lmadmin in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allows remote attack...

CVE-2015-82779.8

Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow...

CVE-2018-200339.8

A Remote Code Execution vulnerability in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier cou...

CVE-2016-103957.8

In FlexNet Publisher versions before Luton SP1 (11.14.1.1) running FlexNet Publisher Licensing Service on Windows platform, a boun...