Computer Security
[EN] securityvulns.ru no-pyccku


Novell File Reporter Engine buffer overflow
Published:04.07.2011
Source:
SecurityVulns ID:11760
Type:remote
Threat Level:
6/10
Description:Buffer overflow on TCP/3035 HTTPs response parsing.
CVE:CVE-2011-2220 (Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used in Novell File Reporter and other products, allows remote attackers to execute arbitrary code via a crafted RECORD element.)
Original documentdocumentZDI, ZDI-11-227: Novell File Reporter Engine RECORD Tag Parsing Remote Code Execution Vulnerability (04.07.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod