SQL Injection Vulnerabilities in Novell ZENworks Patch Management
CVE-2006-6450

Currently unrated

Key Information:

Vendor

Novell
Status
Zenworks Patch Management Server
Vendor
CVE Published:
10 December 2006

What is CVE-2006-6450?

Multiple SQL injection vulnerabilities exist in the downloadreport.asp script of Novell ZENworks Patch Management prior to version 6.3.2.700. These vulnerabilities could allow remote attackers to manipulate the SQL queries through the agentid and pass parameters, enabling them to execute arbitrary SQL commands. This poses significant risks to data integrity and system security, as attackers may exploit these weaknesses to gain unauthorized access to sensitive information or perform administrative operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://secure-support.novell.com/KanisaPlatform/Publishi...
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/30768
vdb-entryx_refsource_XF
http://www.vupen.com/english/advisories/2006/4864
vdb-entryx_refsource_VUPEN

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.