CVE-2011-3175
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
99.8%
Stack-based buffer overflow in the Preboot Service in Novell ZENworks Configuration Management (ZCM) 11.1 and 11.1a allows remote attackers to execute arbitrary code via an opcode 0x6c request.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | zenworks_configuration_management | 11.1 | cpe:2.3:a:novell:zenworks_configuration_management:11.1:*:*:*:*:*:*:* |
| novell | zenworks_configuration_management | 11.1a | cpe:2.3:a:novell:zenworks_configuration_management:11.1a:*:*:*:*:*:*:* |
References
download.novell.com/Download?buildid=rs4B5jhWKf8~
support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5127930.html
www.exploit-db.com/exploits/19958
www.novell.com/support/viewContent.do?externalId=7010044
www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml?id=973
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
99.8%