CVE-2010-2351

Currently unrated

Key Information:

Vendor: Novell
Status: Netware
Vendor: CVE Published:; 21 June 2010

Summary

Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.

References

http://www.stratsec.net/Research/Advisories/SS-2010-006-N...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/59501

vdb-entryx_refsource_XF

http://secunia.com/advisories/40199

third-party-advisoryx_refsource_SECUNIA

EPSS Score

72% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 21, 2010
Vulnerability Reserved
Jun 21, 2010

Collectors

NVD DatabaseMitre Database