|
Description: | | SQL injection vulnerability in the ScheduleQuery method of the schedule class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary SQL commands via unspecified vectors. |
|
Impact: | | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. |
|
Affected OS: | | Windows, Linux, Others |
|
Reference: | | SecurityFocusBID:72808 ZeroDayInitiative:ZDI-15-148 https://www.novell.com/support/kb/doc.php?id=7016431
|
|