tv.zam.it Cross Site Scripting vulnerability OBB-3346186

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Fast DNS: Zone Apex Mapping & DNSSEC

Introduction Along with its DDoS resilience and impressive global footprint, Fast DNS affords zone administrators additional technical flexibility and implementation options. One example is Zone Apex Mapping ZAM -- a feature that enables apex domains to be mapped directly to an Akamai edge IP. Th...

Edge DNS: Zone Apex Mapping & DNSSEC

Along with its DDoS resilience and impressive global footprint, Akamai Edge DNS offers zone administrators additional technical flexibility and implementation options to improve performance and simplify DNS operations. One example is zone apex mapping ZAM, a feature that enables top level hostnam...

PT-2018-17665 · Malwarefox · Malwarefox Antimalware

Name of the Vulnerable Software and Affected Versions: MalwareFox AntiMalware version 2.74.0.150 Description: The issue is related to improper access control in the zam32.sys and zam64.sys drivers, which allows a non-privileged process to elevate privileges. This can be achieved by sending specif...

CVE-2012-4933

The rtrlet web application in the Web Console in Novell ZENworks Asset Management ZAM 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the 1 GetFilePassword and 2 GetConfigInfoPassword operations, which allows remote attackers to obtain sensitive information via a...

CVE-2011-2653

CVE-2011-2653 is a directory traversal vulnerability in Novell ZENworks Asset Management 7.5 (rtrlet/CatchFileServlet) that allows remote attackers to upload an arbitrary executable file and potentially achieve code execution. Multiple connected sources document a path traversal flaw enabling upl...

CVE-2010-4229

CVE-2010-4229 is a directory traversal vulnerability in the Inventory component (ZENworks Asset Management) of Novell ZENworks Configuration Management. Affects ZENworks 10.3 before 10.3.2 and version 11. The flaw arises from improper handling of uploaded file names, enabling an attacker to trave...

Novell ZENworks Configuration Management ZAM文件远程代码执行漏洞

Bugtraq ID: 47295 CVE ID：CVE-2010-4229 Novell ZENworks Configuration Management是一款帮助客户降低IT拥有成本的桌面管理软件。 Novell Zenworks distribution中用于上传文件的servlet存在缺陷。当处理文件路径名时，servlet没有正确检查文件名，攻击者构建包含目录遍历字符的文件名，当servet下载提供的文件时，会把文件存储到用户指定的位置，导致以服务进程上下文执行任意代码。 Novell ZENworks Configuration Management 10.1.2 a...

CVE-2006-6299

Summary (CVE-2006-6299): A heap-based buffer overflow in Msg.dll affects Novell ZENworks 7 Asset Management (ZAM) before SP1 IR11 and the ZENworks Collection client. The vulnerability allows remote attackers to trigger arbitrary code execution via crafted network packets, with the Collection clie...