Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:9E139D980F8B20F969BD73B906FBEB6A
HistoryApr 06, 2012 - 12:00 a.m.

Novell ZENworks Configuration Management Preboot Service Opcode 6c Vulnerability

2012-04-0600:00:00
SAINT Corporation
www.saintcorporation.com
18

EPSS

0.971

Percentile

99.8%

JSON

Added: 04/06/2012
CVE: CVE-2011-3176
BID: 52659
OSVDB: 80231

Background

Novell ZENworks Configuration Management is an IT desktop computer management suite that provides the ability to install, configure and administer desktop computers from a centralized location. The product is based on a client/server architecture.

Problem

Novell ZENworks Configuration Management before 11.2 is vulnerable to a stack buffer overflow when an attacker sends a specially crafted packet using opcode **6c** to the Preboot Service (novell-pbserv.exe).

Resolution

Apply the patches referenced in ZCM 11.1/11.1a fix for PreBoot Service Vulnerabilities to upgrade to ZENworks Configuration Management 11.2.

References

<http://securitytracker.com/id/1026835&gt;

Limitations

This exploit was tested with ZENworks Configuration Management 11.1a on Microsoft Windows Server 2003 SP2 English (DEP OptOut).

Platforms

Windows

Related

saint 7
zdt 1
cve 1
canvas 1
prion 1
nvd 1
checkpoint_advisories 1
packetstorm 1
metasploit 1
cvelist 1
exploitdb 2
nessus 1
saint
saint
Novell ZENworks Configuration Management Preboot Service Opcode 4c Vulnerability
2012-03-28 00:00:00
Novell ZENworks Configuration Management Preboot Service Opcode 6c Vulnerability
2012-04-06 00:00:00
Novell ZENworks Configuration Management Preboot Service Opcode 6c Vulnerability
2012-04-06 00:00:00
zdt
zdt
Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overflow
2012-07-20 00:00:00
cve
cve
CVE-2011-3176
2012-04-09 20:55:01
canvas
canvas
Immunity Canvas: CVE_2011_3176
2012-04-09 20:55:00
prion
prion
Stack overflow
2012-04-09 20:55:00
nvd
nvd
CVE-2011-3176
2012-04-09 20:55:01
checkpoint_advisories
checkpoint_advisories
Novell ZENworks Configuration Management PreBoot Opcode Buffer Overflow (CVE-2011-3176)
2012-06-18 00:00:00
packetstorm
packetstorm
Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overflow
2012-07-19 00:00:00
metasploit
metasploit
Novell ZENworks Configuration Management Preboot Service 0x4c Buffer Overflow
2012-07-19 13:29:10
cvelist
cvelist
CVE-2011-3176
2012-04-09 20:00:00
exploitdb
exploitdb
Novell ZENworks Configuration Management Preboot Service - 0x4c Buffer Overflow (Metasploit)
2012-07-20 00:00:00
Novell ZENworks Configuration Management Preboot Service - 0x6c Buffer Overflow (Metasploit)
2012-07-20 00:00:00
nessus
nessus
Novell ZENworks Configuration Management PreBoot Service Opcode Request Parsing Vulnerabilities
2012-05-02 00:00:00

EPSS

0.971

Percentile

99.8%

JSON
Related for SAINT:9E139D980F8B20F969BD73B906FBEB6A
saint7zdt1cve1canvas1prion1nvd1checkpoint_advisories1packetstorm1metasploit1cvelist1exploitdb2nessus1