Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3786

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-3786
Last Modified 07 Mar 2011 09:27:10
Published 23 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-3786

Summary

Novell ZENworks for Desktops 4.0.1, ZENworks for Servers 3.0.2, and ZENworks 6.5 Desktop Management does not restrict access to Remote Diagnostics, which allows local users to bypass security policies by using Console One.

Vulnerable Systems

Application

  • Novell Zenworks 6.5

  • Novell Zenworks Desktops 4.0.1

  • Novell Zenworks Servers 3.0.2


References

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098818.htm

SECUNIA - 17700

VUPEN - ADV-2005-2544

BID - 15540

SECTRACK - 1015260


Last Updated: 27 May 2016 10:41:02