Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4956

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-4956
Last Modified 02 May 2013 11:25:40
Published 18 Nov 2012 02:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4956

Summary

Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to execute arbitrary code via a large number of VOL elements in an SRS record.

Vulnerable Systems

Application

  • Novell File Reporter 1.0.2


References

CERT-VN - VU#273371

MISC - https://community.rapid7.com/community/metasploit/blog/2012/11/16/nfr-agent-buffer-vulnerabilites-cve-2012-4959

OSVDB - 87574


Last Updated: 27 May 2016 10:47:22