6 matches found
The vulnerability of Novell ZENworks Patch Management’s update agent to PatchLink updates allows a hacker to gain access to confidential data, compromise its integrity, and cause service interruptions.
The vulnerability of Novell ZENworks Patch Management’s update agent, when combined with the PatchLink client update, is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrit...
PatchLink Update Server nwupload.asp Traversal Arbitrary File Write
The remote host is running PatchLink Update Server, a patch and vulnerability management solution. The version of PatchLink Update Server installed on the remote fails to sanitize input to the '/dagent/nwupload.asp' script of directory traversal sequences and does not require authentication befor...
CVE-2005-3315
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the 1 Direction parameter to computers/default.asp, and the 2 SearchText, 3 StatusFilter, and 4 computerFilter parameters to...
Novell ZENworks Patch Management 6.0.52 - computersdefault.asp?Direction SQL Injection
Novell ZENworks Patch Management 6.0.52 - computersdefault.asp?Direction SQL Injection source: https://www.securityfocus.com/bid/15220/info ZENworks Patch Management is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize...
Novell ZENworks Patch Management 6.0.52 - '/reports/default.asp' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15220/info ZENworks Patch Management is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in ...
Novell ZENworks Patch Management 6.0.52 - '/computers/default.asp?Direction' SQL Injection
source: https://www.securityfocus.com/bid/15220/info ZENworks Patch Management is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in ...