Skip navigation
Currently Being Moderated

LANDesk Management Gateway GSB Software Vulnerability

VERSION 2  Click to view document history
Created on: Feb 3, 2010 11:01 PM by Jed - Last Modified:  Feb 5, 2010 9:36 AM by tperkes

Problem:

A vulnerability in one of the LANDesk Management Gateway pages allows an attacker to perform command injection under certain circumstances. This vulnerability could lead to arbitrary commands to be executed under the root context. Versions 4.0-1.48 & 4.2-1.8 of the LANDesk Management Gateway appliance are affected by this flaw.

 

FIX:

LANDesk has released fixes for versions 4.0 & 4.2 products. Please apply GSBWEB_61 to your LANDesk Management Gateway to resolve this problem. Please note these patches are only available through the patch download page on the LANDesk Management Gateway.

 

 

CVE ID:

CVE-2010-0368

CVE-2010-0369

 

Special note:

LANDesk would like to thank Aureliano Calvo and Adrian Manrique from Core Security Technologies for bring this to our attention.

Comments (7)
LANDESK Community powered by Jive SBS® 4.5.7.1  |  Legal Notices  |  Privacy Policy  |  Icon 

TweeterOn Twitter  |  Icon FacebookOn Facebook © 2007 LANDESK Software