Lucene search

[email protected]CVE-2006-6299

HistoryDec 05, 2006 - 11:28 a.m.

CVE-2006-6299

2006-12-0511:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-6299

integer overflow

msg.dll

novell zenworks 7 asset management

zam

sp1 ir11

collection client

remote code execution

buffer overflow

nvd

8.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.128 Low

EPSS

Percentile

95.4%

JSON

Integer overflow in Msg.dll in Novell ZENworks 7 Asset Management (ZAM) before SP1 IR11 and the Collection client allows remote attackers to execute arbitrary code via crafted packets, which trigger a heap-based buffer overflow.

CPENameOperatorVersion
novell:zenworks_asset_managementnovell zenworks asset managementeq7

CPE	Name	Operator	Version
novell:zenworks_asset_management	novell zenworks asset management	eq	7

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=447

labs.idefense.com/intelligence/vulnerabilities/display.php?id=448

secunia.com/advisories/23157

securitytracker.com/id?1017326

support.novell.com/cgi-bin/search/searchtid.cgi?/2974824.htm

www.securityfocus.com/bid/21395

www.securityfocus.com/bid/21400

www.vupen.com/english/advisories/2006/4829

exchange.xforce.ibmcloud.com/vulnerabilities/30665

8.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.128 Low

EPSS

Percentile

95.4%

JSON

Related for CVE-2006-6299

nessus1 checkpoint_advisories1