CVE-2012-4933

Novell ZENworks Asset Management 7.5 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-4933. PoCs published by juan vazquez, including Metasploit module auxiliary/scanner/http/zenworks_assetmanagement_getconfig.

AI-analyzed exploit summary This Metasploit module exploits a hardcoded credential vulnerability in Novell ZENworks Asset Management 7.5 to retrieve configuration parameters, including database credentials, via a crafted POST request to the rtrlet component.

Description

The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (2) GetConfigInfo_Password operations, which allows remote attackers to obtain sensitive information via a crafted rtrlet/rtr request for the HandleMaintenanceCalls function.

Exploits (2)

metasploit WORKING POC
by juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/zenworks_assetmanagement_getconfig.rb

This Metasploit module exploits a hardcoded credential vulnerability in Novell ZENworks Asset Management 7.5 to retrieve configuration parameters, including database credentials, via a crafted POST request to the rtrlet component.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Novell ZENworks Asset Management 7.5
No auth needed
Prerequisites: Network access to the target's web console on port 8080
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by juan vazquez · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/zenworks_assetmanagement_fileaccess.rb

This Metasploit module exploits a hardcoded credential vulnerability (CVE-2012-4933) in Novell ZENworks Asset Management 7.5 to retrieve arbitrary files via a crafted POST request to the rtrlet component. It supports both absolute paths and directory traversal.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Novell ZENworks Asset Management 7.5
No auth needed
Prerequisites: Network access to the target's web console (port 8080 by default)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1027682
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79252
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/332412

Scores

EPSS 0.4401
EPSS Percentile 98.6%

Details

CWE
CWE-255
Status published
Products (1)
novell/zenworks_asset_management 7.5
Published Oct 20, 2012
Tracked Since Feb 18, 2026