CVE-2013-1081

Novell ZENworks Mobile Management <2.7.0 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2013-1081. PoCs published by Metasploit, steponequit, steponequit, Andrea Micalizzi (aka rgod), including Metasploit module auxiliary/scanner/http/novell_mdm_creds.

AI-analyzed exploit summary This Metasploit module exploits a local file inclusion vulnerability in Novell Zenworks Mobile Device Management to achieve remote code execution by uploading and executing a malicious payload.

Description

Directory traversal vulnerability in MDM.php in Novell ZENworks Mobile Management (ZMM) 2.6.1 and 2.7.0 allows remote attackers to include and execute arbitrary local files via the language parameter.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubywebappswindows
https://www.exploit-db.com/exploits/26012

This Metasploit module exploits a local file inclusion vulnerability in Novell Zenworks Mobile Device Management to achieve remote code execution by uploading and executing a malicious payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell Zenworks Mobile Device Management versions 2.6.0, 2.6.1, and 2.7.0
No auth needed
Prerequisites: Network access to the target server · Target server running vulnerable version of Novell Zenworks MDM
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 2 stars
by steponequit · poc
https://github.com/steponequit/CVE-2013-1081

This repository contains a working exploit for CVE-2013-1081, targeting Novell Zenworks Mobile Device Management (MDM) version 2.6.0. The exploit leverages a local file inclusion (LFI) vulnerability to extract administrator credentials and achieve remote code execution (RCE).

Classification
Working Poc 95%
Attack Type
Rce | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Novell Zenworks Mobile Device Management 2.6.0
No auth needed
Prerequisites: Network access to the target server · Target running Novell Zenworks MDM 2.6.0
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by steponequit, Andrea Micalizzi (aka rgod) · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/novell_mdm_creds.rb

This Metasploit module exploits an SQL injection vulnerability in Novell Zenworks MDM to extract administrator credentials by leveraging PHP session manipulation and SQL query execution.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Novell Zenworks Mobile Device Management (MDM) (version not specified, but CVE-2013-1081 suggests older versions)
No auth needed
Prerequisites: Network access to the target server · Vulnerable version of Novell Zenworks MDM
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by steponequit, Andrea Micalizzi (aka rgod) · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/novell_mdm_lfi.rb

This Metasploit module exploits a local file inclusion vulnerability in Novell Zenworks Mobile Management's MDM.php script, allowing unauthenticated remote code execution via directory traversal in the 'language' parameter of a POST request to DUSAP.php.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell Zenworks Mobile Management 2.6.0, 2.6.1, 2.7.0
No auth needed
Prerequisites: Network access to the target server · Target running vulnerable version of Novell Zenworks Mobile Management
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/kb/doc.php?id=7011895

Scores

EPSS 0.6808
EPSS Percentile 99.2%

Details

CWE
CWE-22
Status published
Products (2)
novell/zenworks_mobile_management 2.6.1
novell/zenworks_mobile_management 2.7.0
Published Mar 11, 2013
Tracked Since Feb 18, 2026