CVE-2010-1930

Currently unrated

Key Information:

Vendor
Novell
Status
Imanager
Vendor
CVE Published:
28 June 2010

Summary

Off-by-one error in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allows remote attackers to cause a denial of service (daemon crash) via a long tree parameter in a login request to nps/servlet/webacc.

References

http://www.securityfocus.com/bid/40485
vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2010/1575
vdb-entryx_refsource_VUPEN
http://securitytracker.com/id?1024152
vdb-entryx_refsource_SECTRACK

EPSS Score

2% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.