Novell ZENworks Configuration Management DirectoryViewer Information Disclosure (CVE-2015-0785)
An information disclosure vulnerability exists in Novell ZENworks Configuration Management. The vulnerability is due to lack of sanitization of the dirname parameter within the DirectoryViewer class. By sending crafted requests to the target server, a remote attacker can leverage this vulnerabili...