2 matches found
CVE-2010-4227
The CVE concerns Novell Netware 6.5’s XNFS.NLM (default UDP port 1234). The xdrDecodeString function accepts a signed length and writes NULL terminator, enabling a stack-based buffer overflow that can lead to remote code execution or a denial of service. Published details confirm a remote attacke...
ZDI-11-090: Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability
ZDI-11-090: Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-090 February 18, 2011 -- CVE ID: CVE-2010-4227 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Novell -- Affected Products: Novell Netware --...