Buffer Overflow in Novell iManager Affecting Remote Authenticated Users
CVE-2011-4188

Currently unrated

Key Information:

Vendor: Novell
Status: Imanager
Vendor: CVE Published:; 9 April 2012

What is CVE-2011-4188?

A buffer overflow exists in the Create Attribute function within the jclient component of Novell iManager 2.7.4 prior to patch 4. This vulnerability allows remote authenticated users to manipulate the EnteredAttrName parameter, which can lead to application crashes or other unspecified impacts. This vulnerability is related to previously reported issues and can significantly affect system stability.

References

http://www.securitytracker.com/id?1026894

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/74669

vdb-entryx_refsource_XF

http://www.novell.com/support/viewContent.do?externalId=7...

x_refsource_CONFIRM

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 9, 2012
Vulnerability Reserved
Oct 25, 2011