CVE-2011-2220

Sažetak

Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used in Novell File Reporter and other products, allows remote attackers to execute arbitrary code via a crafted RECORD element.

Reference

http://download.novell.com/Download?buildid=leLxi7tQACs~
http://secunia.com/advisories/45065
http://securityreason.com/securityalert/8305
http://securitytracker.com/id?1025722
http://www.securityfocus.com/archive/1/518632/100/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-11-227

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2018 - 19:32

Objavljeno

14-07-2011 - 23:55