CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-4509

The MKDQUOTESAFE function in the Fan-out driver scripts in Fan-Out Platform Services in Novell Identity Manager (aka IDM) 4.0.2 allows local users to execute arbitrary commands by leveraging eDirectory POSIX attribute changes to insert shell metacharacters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.7%

CVSS Severity

CVSS v2 Score 4.6

References

http://download.novell.com/Download?buildid=5XLmBl54_Rg~
http://www.securityfocus.com/bid/68139
http://download.novell.com/Download?buildid=5XLmBl54_Rg~
http://www.securityfocus.com/bid/68139

Products affected by CVE-2014-4509

Netiq » Identity Manager » Version: 4.0.2

cpe:2.3:a:netiq:identity_manager:4.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4509

Products

Pricing

Contact Us