CVE-2005-3315

Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/default.asp, and the (2) SearchText, (3) StatusFilter, and (4) computerFilter parameters to reports/default.asp.

Date published : 2005-10-30

http://www.securityfocus.com/bid/15220

http://www.securityfocus.com/archive/1/414880