Lucene search

[email protected]CVE-2006-6299

HistoryDec 05, 2006 - 11:28 a.m.

CVE-2006-6299

2006-12-0511:28:00

[email protected]

web.nvd.nist.gov

cve-2006-6299

integer overflow

msg.dll

novell zenworks 7 asset management

zam

sp1 ir11

collection client

remote code execution

buffer overflow

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.128 Low

EPSS

Percentile

95.5%

JSON

Integer overflow in Msg.dll in Novell ZENworks 7 Asset Management (ZAM) before SP1 IR11 and the Collection client allows remote attackers to execute arbitrary code via crafted packets, which trigger a heap-based buffer overflow.

Affected configurations

NVD

Node

novellzenworks_asset_managementMatch7sp1

CPENameOperatorVersion
novell:zenworks_asset_managementnovell zenworks asset managementeq7

CPE	Name	Operator	Version
novell:zenworks_asset_management	novell zenworks asset management	eq	7

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=447

labs.idefense.com/intelligence/vulnerabilities/display.php?id=448

secunia.com/advisories/23157

securitytracker.com/id?1017326

support.novell.com/cgi-bin/search/searchtid.cgi?/2974824.htm

www.securityfocus.com/bid/21395

www.securityfocus.com/bid/21400

www.vupen.com/english/advisories/2006/4829

exchange.xforce.ibmcloud.com/vulnerabilities/30665

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.128 Low

EPSS

Percentile

95.5%

JSON

Related for CVE-2006-6299

checkpoint_advisories1 nvd1 nessus1 cvelist1