Lucene search

[email protected]CVE-2005-3655

HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-3655

2005-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-3655

novell

open enterprise server

remote manager

buffer overflow

suse linux enterprise server 9

remote code execution

http post

nvd

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.241 Low

EPSS

Percentile

96.6%

JSON

Heap-based buffer overflow in Novell Open Enterprise Server Remote Manager (novell-nrm) in Novell SUSE Linux Enterprise Server 9 allows remote attackers to execute arbitrary code via an HTTP POST request with a negative Content-Length parameter.

CPENameOperatorVersion
novell:open_enterprise_servernovell open enterprise servereq9

CPE	Name	Operator	Version
novell:open_enterprise_server	novell open enterprise server	eq	9

References

secunia.com/advisories/18484

securityreason.com/securityalert/348

securitytracker.com/id?1015487

www.idefense.com/intelligence/vulnerabilities/display.php?id=371

www.novell.com/linux/security/advisories/2006_02_novellnrm.html

www.osvdb.org/22455

www.securityfocus.com/bid/16226

exchange.xforce.ibmcloud.com/vulnerabilities/24111

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.241 Low

EPSS

Percentile

96.6%

JSON

Related for CVE-2005-3655

cvelist1 checkpoint_advisories1 suse1 securityvulns2 nessus1