The xplat agent in Novell ZENworks Configuration Management (ZCM) 10.3.x prior to 10.3.4 and 11.x prior to 11.2 enables the HTTP TRACE method, which might make it easier for remote malicious users to conduct cross-site tracing (XST) attacks via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell zenworks configuration management 11 |
||
novell zenworks configuration management 11.1 |
||
novell zenworks configuration management 10.3.2 |
||
novell zenworks configuration management 10.3.3 |
||
novell zenworks configuration management 11.1a |
||
novell zenworks configuration management 10.3 |
||
novell zenworks configuration management 10.3.1 |