The ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows attackers to conduct cross-frame scripting attacks via unknown vectors.Referenceshttp://www.novell.com/support/kb/doc.php?id=7012027
