CVE-2013-1080

Novell ZENworks Configuration Management < 11.2.4 - Directory Traversal & Arbitrary File Upload

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-1080. PoCs published by Metasploit, James Burton, juan vazquez, including Metasploit module exploits/multi/http/zenworks_control_center_upload.

AI-analyzed exploit summary This Metasploit module exploits a directory traversal vulnerability in Novell ZENworks Configuration Management to upload a malicious WAR file outside the intended directory, leading to remote code execution. It supports both Windows and Linux targets.

Description

The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to conduct directory traversal attacks, and consequently upload and execute arbitrary programs, via a request to TCP port 443.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/24938

This Metasploit module exploits a directory traversal vulnerability in Novell ZENworks Configuration Management to upload a malicious WAR file outside the intended directory, leading to remote code execution. It supports both Windows and Linux targets.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell ZENworks Configuration Management 10 SP3 and 11 SP2
No auth needed
Prerequisites: Network access to the target server · Target server running vulnerable ZENworks version
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC GREAT
by James Burton, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/zenworks_control_center_upload.rb

This Metasploit module exploits a directory traversal and file upload vulnerability in Novell ZENworks Configuration Management, allowing unauthenticated remote code execution by uploading a malicious WAR file and triggering its deployment.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell ZENworks Configuration Management 10 SP3 and 11 SP2
No auth needed
Prerequisites: Network access to the target server · Target running vulnerable ZENworks version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7011812
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-13-049/
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7012027
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/24938

Scores

EPSS 0.7705
EPSS Percentile 99.5%

Details

CWE
CWE-287
Status published
Products (2)
novell/zenworks_configuration_management 10.3
novell/zenworks_configuration_management 11.2
Published Mar 29, 2013
Tracked Since Feb 18, 2026