Computer Security
[EN] no-pyccku

Novell iManager buffer overflows
SecurityVulns ID:10957
Threat Level:
Description:Few different buffer overflows.
Affected:NOVELL : iManager 2.7
CVE:CVE-2010-1930 (Off-by-one error in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allows remote attackers to cause a denial of service (daemon crash) via a long tree parameter in a login request to nps/servlet/webacc.)
 CVE-2010-1929 (Multiple stack-based buffer overflows in the jclient._Java[email protected] function in jclient.dll in the Tomcat web server in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allow remote authenticated users to execute arbitrary code via the (1) EnteredClassID or (2) NewClassName parameter to nps/servlet/webacc.)
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2010-0316 - Novell iManager Multiple Vulnerabilities (25.06.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod