Unrated severityNVD Advisory· Published May 20, 2014· Updated May 6, 2026

CVE-2014-3460

Description

Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted pathname.

Affected products

Microfocus/Sentinel
cpe:2.3:a:microfocus:sentinel:-:*:*:*:*:*:*:*
Microfocus/Sentinel Agent Manager
cpe:2.3:a:microfocus:sentinel_agent_manager:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/58635nvd
www.novell.com/support/kb/doc.phpnvd
www.securityfocus.com/bid/67487nvd
www.securitytracker.com/id/1030434nvd
zerodayinitiative.com/advisories/ZDI-14-134/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000