Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:5F0198169D4F59DD3984DD886649624F
HistoryJul 12, 2010 - 12:00 a.m.

Novell iManager EnteredClassName buffer overflow

2010-07-1200:00:00
SAINT Corporation
download.saintcorporation.com
8

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.546 Medium

EPSS

Percentile

97.7%

JSON

Added: 07/12/2010
CVE: CVE-2010-1929
BID: 40480
OSVDB: 65737

Background

Novell iManager is a web-based management interface for other Novell products.

Problem

A buffer overflow vulnerability in jclient.dll allows remote attackers to execute arbitrary commands by sending a specially crafted EnteredClassName parameter to the nps/servlet/webacc program.

Resolution

Upgrade to Novell iManager version 2.7.3 ftf4 or 2.7.4.

References

<http://secunia.com/advisories/40281&gt;

Limitations

Exploit works on Novell iManager 2.7.3 and requires a valid Novell iManager login, password, and tree name.

Platforms

Windows

Related

nvd 2
prion 2
saint 3
nessus 1
cve 2
checkpoint_advisories 1
cvelist 2
seebug 1
openvas 2
packetstorm 1
securityvulns 2
exploitpack 1
exploitdb 1
nvd
nvd
CVE-2010-1929
2010-06-28 17:30:01
CVE-2011-4188
2012-04-09 20:55:02
prion
prion
Stack overflow
2010-06-28 17:30:00
Buffer overflow
2012-04-09 20:55:00
saint
saint
Novell iManager EnteredClassName buffer overflow
2010-07-12 00:00:00
Novell iManager EnteredClassName buffer overflow
2010-07-12 00:00:00
Novell iManager EnteredClassName buffer overflow
2010-07-12 00:00:00
nessus
nessus
Novell eDirectory < 8.8 SP6 Patch 5 Multiple Vulnerabilities
2012-08-29 00:00:00
cve
cve
CVE-2010-1929
2010-06-28 17:30:01
CVE-2011-4188
2012-04-09 20:55:02
checkpoint_advisories
checkpoint_advisories
Novell iManager Class Name Remote Buffer Overflow (CVE-2010-1929)
2010-08-03 00:00:00
cvelist
cvelist
CVE-2010-1929
2010-06-28 17:00:00
CVE-2011-4188
2012-04-09 20:00:00
seebug
seebug
Novell iManager Multiple Vulnerabilities
2010-06-25 00:00:00
openvas
openvas
Novell iManager < 2.7.4 Multiple Vulnerabilities
2010-06-24 00:00:00
Novell iManager < 2.7.4 Multiple Vulnerabilities
2010-06-24 00:00:00
packetstorm
packetstorm
Core Security Technologies Advisory 2010.0316
2010-06-25 00:00:00
securityvulns
securityvulns
Novell iManager buffer overflows
2010-06-25 00:00:00
CORE-2010-0316 - Novell iManager Multiple Vulnerabilities
2010-06-25 00:00:00
exploitpack
exploitpack
Novell iManager - Multiple Vulnerabilities
2010-06-24 00:00:00
exploitdb
exploitdb
Novell iManager - Multiple Vulnerabilities
2010-06-24 00:00:00

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.546 Medium

EPSS

Percentile

97.7%

JSON
Related for SAINT:5F0198169D4F59DD3984DD886649624F
nvd2prion2saint3nessus1cve2checkpoint_advisories1cvelist2seebug1openvas2packetstorm1securityvulns2exploitpack1exploitdb1