|
| Description: | | SQL injection vulnerability in the ScheduleQuery method of the schedule class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
|
| Impact: | | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. |
|
| Affected OS: | | Windows, Linux, Others |
|
| Reference: | | SecurityFocusBID:72808
ZeroDayInitiative:ZDI-15-148
https://www.novell.com/support/kb/doc.php?id=7016431
|
|