Name | novell_nicm |
---|---|
CVE | CVE-2013-3956 Exploit Pack |
Notes: |
The IOCTL handler for the nicm.sys driver in Novell Client IR5 does not
validate pointers from usermode buffers. When passing in the IOCTL 0x143B6B
an attacker can supply a function pointer that lives in usermode resulting in
a privilege escalation.
The original 0-day was posted to Pastebin here: http://pastebin.com/GB4iiEwR
Repeatability: Infinite
CVS URL:
Date public: 05/22/2013
CVE Url: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3956
CVSS: