Computer Security

Novell File Reporter Engine buffer overflow
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Novell File Reporter Engine buffer overflow
Published:04.07.2011
Source:BUGTRAQ
SecurityVulns ID:11760
Type:remote
Level:6/10
Description:Buffer overflow on TCP/3035 HTTPs response parsing.
CVE:CVE-2011-2220 (Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used in Novell File Reporter and other products, allows remote attackers to execute arbitrary code via a crafted RECORD element.)
Original documentdocumentZDI, ZDI-11-227: Novell File Reporter Engine RECORD Tag Parsing Remote Code Execution Vulnerability (04.07.2011)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru