Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-0742

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-0742
Last Modified 03 Feb 2011 12:00:00
Published 01 Feb 2011 08:00:07
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-0742

Summary

Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400.

Vulnerable Systems

Application

  • Novell Zenworks Handheld Management 7


References

XF - zhm-zfhipcnd-bo(64930)

MISC - http://www.zerodayinitiative.com/advisories/ZDI-11-026/

VUPEN - ADV-2011-0221

SECTRACK - 1024993

BID - 46024

BUGTRAQ - 20110128 TELUS Security Labs VR - Novell ZENworks Handheld Management ZfHIPCND.exe Buffer Overflow

CONFIRM - http://www.novell.com/support/viewContent.do?externalId=7007663

MISC - http://telussecuritylabs.com/threats/show/FSC20110125-06

SECUNIA - 43094

OSVDB - 70694


Last Updated: 27 May 2016 10:56:02