CVE-2014-0602
NetIQ Security Manager < 6.5.4 - Directory Traversal and Remote Code Execution via DumpToFile Method
Title source: llmDescription
Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in NetIQ Security Manager through 6.5.4 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3460.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.netiq.com/support/kb/doc.php?id=7015309
Scores
EPSS
0.0091
EPSS Percentile
76.1%
Details
CWE
CWE-94
Status
published
Products (1)
microfocus/security_manager
< 6.5.4
Published
Jul 07, 2014
Tracked Since
Feb 18, 2026