Novell ZENworks Asset Management 7.5 Configuration Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell ZENworks Asset Management 7.5 Configuration Access', 'Description' = %q This module exploits a hardcoded user and password for the GetConf...

Novell ZENworks Asset Management 7.5 Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell ZENworks Asset Management 7.5 Remote File Access', 'Description' = %q This module exploits a hardcoded user and password for the GetFile...

CVE-2012-4933

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/zenworksassetmanagementgetconfig.rb 2018-05-29 15:50:33+00:00| seen|...

Novell ZENworks Asset Management Web Console Information Disclosure (CVE-2012-4933)

An information disclosure vulnerability has been reported in Novell ZENworks Asset Management...

CVE-2012-4933

CVE-2012-4933 affects Novell ZENworks Asset Management 7.5 Web Console. The vulnerability lies in the rtrlet component: GetFile_Password and GetConfigInfo_Password maintenance calls are protected by hard-coded credentials (username Ivanhoe / password Scott), enabling a remote attacker to disclose...