Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to obtain Session IDs of logged in users via a value of ShowLogins for the maintenance variable.
References
Configurations
History
21 Nov 2024, 02:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/74289 - | |
References | () http://www.securitytracker.com/id/1032166 - | |
References | () http://www.zerodayinitiative.com/advisories/ZDI-15-149 - | |
References | () https://www.novell.com/support/kb/doc.php?id=7016431 - |
Information
Published : 2017-08-09 18:29
Updated : 2024-11-21 02:23
NVD link : CVE-2015-0784
Mitre link : CVE-2015-0784
CVE.ORG link : CVE-2015-0784
JSON object : View
Products Affected
novell
- zenworks_configuration_management
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor