EUVD-2015-1736

Malware in sbrugna...

Dell ScriptLogic Asset Manager SQL Injection remote code execution (CVE-2015-1605)

A remote code execution vulnerability has been reported in Dell ScriptLogic Asset Manager. The vulnerability is due to insufficient input validation while processing requests to GetProcessedPackage.aspx or GetClientPackage.aspx, this enables attacker to inject SQL code. A remote attacker can...

CVE-2015-1605

Multiple SQL injection vulnerabilities in Dell ScriptLogic Asset Manager aka Quest Workspace Asset Manager before 9.5 allow remote attackers to execute arbitrary SQL commands via unspecified vectors to 1 GetClientPackage.aspx or 2 GetProcessedPackage.aspx...

CVE-2015-1605

Dell ScriptLogic Asset Manager (Quest Workspace Asset Manager) vulnerable before 9.5 due to multiple SQL injection flaws in GetClientPackage.aspx and GetProcessedPackage.aspx. Root cause: insufficient input validation allowing remote SQL injection, enabling remote code execution under the NETWORK...

Dell ScriptLogic Asset Manager GetClientPackage SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Dell ScriptLogic Asset Manager, also known as Quest Workspace Asset Manager. Authentication is not required to exploit this vulnerability. To exploit this security flaw, an attacker would make a...

Dell ScriptLogic Asset Manager GetProcessedPackage SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Dell ScriptLogic Asset Manager, also known as Quest Workspace Asset Manager. Authentication is not required to exploit this vulnerability. To exploit this security flaw, an attacker would make a...