Lucene search

[email protected]CVE-2010-4299

HistoryNov 22, 2010 - 12:54 p.m.

CVE-2010-4299

2010-11-2212:54:11

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-4299

buffer overflow

remote code execution

novell zenworks 7 handheld management

zhm

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.892 High

EPSS

Percentile

98.8%

JSON

Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 Handheld Management (ZHM) allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400.

Affected configurations

NVD

Node

novellzenworks_handheld_managementMatch7

novellzenworks_handheld_managementMatch7sp1

CPENameOperatorVersion
novell:zenworks_handheld_managementnovell zenworks handheld managementeq7

CPE	Name	Operator	Version
novell:zenworks_handheld_management	novell zenworks handheld management	eq	7

References

marc.info/?l=full-disclosure&m=128916914213292&w=2

secunia.com/advisories/42130

www.novell.com/support/viewContent.do?externalId=7007135

www.securitytracker.com/id?1024691

www.zerodayinitiative.com/advisories/ZDI-10-230/

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.892 High

EPSS

Percentile

98.8%

JSON

Related for CVE-2010-4299

nvd1 checkpoint_advisories1 prion1 nessus1 openvas2 cvelist1