5 matches found
SUSE CVE-2013-3707
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 OES 2 Linux, and OES 11 Linux Gold and SP1, does not make the intended SSLfree and SSLshutdown calls for the close of a TCP connection, which allows remote attackers to cause a denial of...
CVE-2013-3707
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 OES 2 Linux, and OES 11 Linux Gold and SP1, does not make the intended SSLfree and SSLshutdown calls for the close of a TCP connection, which allows remote attackers to cause a denial of...
Design/Logic Flaw
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 OES 2 Linux, and OES 11 Linux Gold and SP1, does not make the intended SSLfree and SSLshutdown calls for the close of a TCP connection, which allows remote attackers to cause a denial of...
CVE-2013-3707
CVE-2013-3707 affects the HTTPSTK service in the Novell Open Enterprise Server (OES) 2 Linux and OES 11 Linux Gold/SP1 releases via the novell-nrm package. The root cause is that the HTTPSTK component does not perform the intended SSL_free and SSL_shutdown on TCP connection close, enabling a remo...
SUSE Security Announcement: novell-nrm remote heap overflow (SUSE-SA:2006:002)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUSE Security Announcement Package: novell-nrm Announcement ID: SUSE-SA:2006:002 Date: Fri, 13 Jan 2006 15:00:00 +0000 Affected Products: Open Enterprise Server Vulnerability Type: remote code execution Severity 1-10: 10 SUSE Default Package: yes...