CVE-2014-3460 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-3460 Interim 1 3 2021-06-09T09:26:45Z current 2021-05-30T13:20:49Z 2021-06-09T09:26:45Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-3460 Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted pathname. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/kb/doc/?id=7015183 E-Mail link for TID7015183 https://www.suse.com/support/security/rating/ SUSE Security Ratings Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted pathname. CVE-2014-3460 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P