CVE-2010-2351

2010-06-2119:00:00

mitre

www.cve.org

8.2 High

AI Score

Confidence

High

0.451 Medium

EPSS

Percentile

97.4%

JSON

Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.

References

download.novell.com/Download?buildid=tMWCI1cdI7s~

secunia.com/advisories/40199

www.exploit-db.com/exploits/13906

www.securityfocus.com/bid/40908

www.stratsec.net/Research/Advisories/SS-2010-006-Netware-SMB-Remote-Stack-Overflow

www.vupen.com/english/advisories/2010/1514

exchange.xforce.ibmcloud.com/vulnerabilities/59501