CVE-2011-2750

Novell File Reporter <= 1.0.4.2 - Arbitrary File Deletion via SRS OPERATION 4 CMD 5 Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-2750. PoCs published by Luigi Auriemma, juan vazquez, including Metasploit module auxiliary/admin/http/novell_file_reporter_filedelete.

AI-analyzed exploit summary This Metasploit module exploits an arbitrary file deletion vulnerability in Novell File Reporter Agent by sending a crafted SRS request with OPERATION set to 4 and CMD set to 5 to the /FSF/CMD endpoint. The exploit constructs a malicious XML payload and sends it via HTTP POST, allowing an attacker to delete arbitrary files on the target system.

Description

NFRAgent.exe in Novell File Reporter 1.0.4.2 and earlier allows remote attackers to delete arbitrary files via a full pathname in an SRS OPERATION 4 CMD 5 request to /FSF/CMD.

Exploits (1)

metasploit WORKING POC

by Luigi Auriemma, juan vazquez · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/novell_file_reporter_filedelete.rb

View Code ZIP pw:eip

This Metasploit module exploits an arbitrary file deletion vulnerability in Novell File Reporter Agent by sending a crafted SRS request with OPERATION set to 4 and CMD set to 5 to the /FSF/CMD endpoint. The exploit constructs a malicious XML payload and sends it via HTTP POST, allowing an attacker to delete arbitrary files on the target system.

Classification

Working Poc 100%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Novell File Reporter Agent 1.0.4.3, 1.0.3.22

No auth needed

Prerequisites: Network access to the target system · Novell File Reporter Agent running on the target

MITRE ATT&CK

T1485 - Data Destruction

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1025716

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/45071

Exploit x_refsource_misc

http://aluigi.org/adv/nfr_2-adv.txt

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/518626/100/0/threaded

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/8309

Scores

EPSS 0.7081

EPSS Percentile 98.7%

Details

CWE

CWE-399

Status published

Products (4)

novell/file_reporter 1.0.1

novell/file_reporter 1.0.1.1

novell/file_reporter 1.0.2

novell/file_reporter < 1.0.4.2

Published Jul 17, 2011

Tracked Since Feb 18, 2026