Buffer Overflow Vulnerability in Novell ZENworks Handheld Management
CVE-2011-0742

Currently unrated

Key Information:

Vendor: Novell
Status: Zenworks Handheld Management
Vendor: CVE Published:; 2 February 2011

What is CVE-2011-0742?

The buffer overflow vulnerability in ZfHIPCND.exe within Novell ZENworks Handheld Management 7.0 enables remote attackers to execute arbitrary code by sending specially crafted IP Conduit packets to TCP port 2400. This risk emphasizes the importance of securing network services and implementing strict access controls to prevent exploitation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/64930

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/516045/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2011/0221

vdb-entryx_refsource_VUPEN

EPSS Score

39% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 2, 2011
Vulnerability Reserved
Feb 1, 2011