Access Control Flaw in Novell ZENworks for Desktops and Servers
CVE-2005-3786

Currently unrated

Key Information:

Vendor: Novell
Status: Zenworks Servers; Zenworks Desktops; Zenworks
Vendor: CVE Published:; 23 November 2005

Summary

A flaw in Novell ZENworks for Desktops and Servers allows local users to access Remote Diagnostics without appropriate restrictions. This oversight permits users to bypass established security policies through Console One, potentially compromising the integrity of system configurations and data protection measures.

References

http://www.vupen.com/english/advisories/2005/2544

vdb-entryx_refsource_VUPEN

http://securitytracker.com/id?1015260

vdb-entryx_refsource_SECTRACK

http://support.novell.com/cgi-bin/search/searchtid.cgi?/1...

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 23, 2005
Vulnerability Reserved
Nov 23, 2005