Zenworks Asset Management Security Vulnerabilities and Issues — Zenworks Asset Management CVE List

Lucene search

NovellZenworks Asset Management

3 matches found

CVE•added 2012/10/20 6:55 p.m.•133 views

CVE-2012-4933

The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (2) GetConfigInfo_Password operations, which allows remote attackers to obtain sensitive information ...

7.8CVSS6.4AI score0.78445EPSS

CVE•added 2011/12/08 11:55 a.m.•45 views

CVE-2011-2653

Directory traversal vulnerability in the rtrlet component in Novell ZENworks Asset Management (ZAM) 7.5 allows remote attackers to execute arbitrary code by uploading an executable file.

10CVSS7.6AI score0.86814EPSS

CVE•added 2006/12/05 11:28 a.m.•37 views

CVE-2006-6299

Integer overflow in Msg.dll in Novell ZENworks 7 Asset Management (ZAM) before SP1 IR11 and the Collection client allows remote attackers to execute arbitrary code via crafted packets, which trigger a heap-based buffer overflow.

10CVSS8AI score0.13427EPSS