Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-0994

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-0994
Last Modified 21 Sep 2011 11:29:14
Published 09 Apr 2011 10:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-0994

Summary

Stack-based buffer overflow in NFRAgent.exe in Novell File Reporter (NFR) before 1.0.2 allows remote attackers to execute arbitrary code via unspecified XML data.

Vulnerable Systems

Application

  • Novell File Reporter 1.0.1


References

CONFIRM - http://download.novell.com/Download?buildid=rCAgCcbPH9s~

XF - filereporter-nfragent-bo(66548)

MISC - http://www.zerodayinitiative.com/advisories/ZDI-11-116/

VUPEN - ADV-2011-0866

SECTRACK - 1025292

BID - 47144

BUGTRAQ - 20110404 ZDI-11-116: Novell File Reporter Agent XML Parsing Remote Code Execution Vulnerability

SREASON - 8194

SECUNIA - 43975


Last Updated: 27 May 2016 10:56:07