Produkt Zenworks (...) - CVEMAP.ORG

Podatności dla 'Zenworks'

2007-02-26

CVE-2007-1119

Unspecified vulnerability in Novell ZENworks 7 Desktop Management Support Pack 1 before Hot patch 3 (ZDM7SP1HP3) allows remote attackers to upload images to certain folders that were not configured in the "Only allow uploads to the following directories" setting via unspecified vectors.

2006-07-06

CVE-2006-3430

CWE-89

SQL injection vulnerability in checkprofile.asp in (1) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and (2) Novell ZENworks 6.2 SR1 and earlier, allows remote attackers to execute arbitrary SQL commands via the agentid parameter.

CVE-2006-3426

CWE-Other

Directory traversal vulnerability in (a) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and (b) Novell ZENworks 6.2 SR1 and earlier allows remote attackers to overwrite arbitrary files and directories via a .. (dot dot) sequence in the (1) action, (2) agentid, or (3) index parameters to dagent/nwupload.asp, which are used as pathname components.

CVE-2006-3425

CWE-Other

FastPatch for (a) PatchLink Update Server (PLUS) before 6.1 P1 and 6.2.x before 6.2 SR1 P1, and (b) Novell ZENworks 6.2 SR1 and earlier, does not require authentication for dagent/proxyreg.asp, which allows remote attackers to list, add, or delete PatchLink Distribution Point (PDP) proxy servers via modified (1) List, (2) Proxy, or (3) Delete parameters.

2005-11-23

CVE-2005-3786

Novell ZENworks for Desktops 4.0.1, ZENworks for Servers 3.0.2, and ZENworks 6.5 Desktop Management does not restrict access to Remote Diagnostics, which allows local users to bypass security policies by using Console One.

2005-05-25

CVE-2005-1543

Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.

>>> Vendor: Novell 111 Produkty

Netware ftp server

Groupwise webaccess

Small business suite

Zenworks desktops

Internet messaging system

Client firewall

Zenworks remote management

Zenworks server management

Zenworks servers

Open enterprise server

Zenworks patch management server

Groupwise messenger

Identity manager

Zenworks asset management

Apache http server

Access manager identity server

Extend director

Modular authentication service

Client login extension (cle)

Zenworks endpoint security management

Zenworks patch management update agent

Challenge response client

Novell client for windows

Zenworks desktop management

Identity manager roles based provisioning module

User application

Netidentity client1.2.3

Suse linux enterprise server

Suse lifecycle management server

Zenworks configuration management

Zenworks handheld management

Zenworks configuration manager

Iprint open enterprise server

Opensuse build service

Suse linux enterprise

Opensuse factory

Identity manager user application

Xtier framework

Data synchronizer

File reporter engine

Suse studio onsite

Iprint open enterprise server 2

Sentinel log manager

Suse audit log keeper

Zenworks mobile management

Suse linux enterprise desktop

Suse linux software development kit

Suse linux enterprise for sap applications

Suse linux enterprise software development kit

Suse linux for vmware

Suse linux enterprise module for legacy software

Suse manager proxy

Suse openstack cloud

Suse package hub for suse linux enterprise

Suse linux enterprise debuginfo

Suse linux enterprise real time extension

Suse linux enterprise live patching

Zobacz wszystkie produkty dla producenta Novell

Copyright 2024, cxsecurity.com