CVE-2011-2220

Currently unrated

Key Information:

Vendor: Novell
Status: File Reporter Engine; File Reporter
Vendor: CVE Published:; 14 July 2011

Summary

Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used in Novell File Reporter and other products, allows remote attackers to execute arbitrary code via a crafted RECORD element.

References

http://download.novell.com/Download?buildid=leLxi7tQACs~

x_refsource_CONFIRM

http://securityreason.com/securityalert/8305

third-party-advisoryx_refsource_SREASON

http://secunia.com/advisories/45065

third-party-advisoryx_refsource_SECUNIA

EPSS Score

67% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 14, 2011
Vulnerability Reserved
Jun 2, 2011

Collectors

NVD DatabaseMitre Database