Skip navigation
Currently Being Moderated

CVE-2010-2892 Vulnerability in the LANDesk Management Gateway

VERSION 5  Click to view document history
Created on: Nov 10, 2010 12:01 PM by Jed - Last Modified:  Mar 21, 2014 11:19 AM by Jed

Problem:

 

A vulnerability in one of the LANDesk Management Gateway pages allows an attacker to perform command injection under certain circumstances. This vulnerability could lead to arbitrary commands to be executed under the root context. Versions 4.0-1.48 & 4.2-1.8 of the LANDesk Management Gateway appliance are affected by this flaw.

 

 

FIX:

 

LANDesk has released fixes for versions 4.0 & 4.2 products. Please apply GSBWEB_62 to your LANDesk Management Gateway to resolve this problem. Please note these patches are only available through the patch download page on the LANDesk Management Gateway.

 

CVE ID:

 

CVE-2010-2892

 

Special note:

 

LANDesk would like to thank Aureliano Calvo from Core Security Technologies for bring this to our attention.

Comments (4)
LANDESK Community powered by Jive SBS® 4.5.7.1  |  Legal Notices  |  Privacy Policy  |  Icon 

TweeterOn Twitter  |  Icon FacebookOn Facebook © 2007 LANDESK Software