Описание
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-3315
- http://cirt.dk/advisories/cirt-39-advisory.pdf
- http://secunia.com/advisories/17358
- http://securityreason.com/securityalert/124
- http://securitytracker.com/id?1015116
- http://support.novell.com/cgi-bin/search/searchtid.cgi?10099318.htm
- http://www.kb.cert.org/vuls/id/536300
- http://www.osvdb.org/20362
- http://www.osvdb.org/20363
- http://www.securityfocus.com/archive/1/414880
- http://www.securityfocus.com/bid/15220
- http://www.vupen.com/english/advisories/2005/2238
EPSS
CVE ID
Связанные уязвимости
Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.
EPSS