2 matches found
CVE-2014-5362
CVE-2014-5362 affects LANDESK/Landesk Management Suite 9.6 and earlier. The admin interface is vulnerable to remote file inclusion via insufficient input validation, exploitable by crafting requests that set the d parameter in ldms/sm_actionfrm.asp or remote/frm_coremainfrm.aspx, or the top param...
Landesk Management Suite 9.5 RFI / CSRF
Exploit Title: Landesk Management Suite RFI and CSRF vulnerabilities Product: Landesk Management Suite Vulnerable Versions: 9.5 and possible previous versions, 9.6 Tested Version: 9.5 Advisory Publication: 16/04/2015 Latest Update: 16/04/2015 Vulnerability Type: Cross-site request forgery CWE-352...