Vulnerabilities > CVE-2010-1930 - Numeric Errors vulnerability in Novell Imanager 2.7.0/2.7.3

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
novell
CWE-189
exploit available
NVD
Published: 2010-06-28
Updated: 2018-10-10

Summary

Off-by-one error in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allows remote attackers to cause a denial of service (daemon crash) via a long tree parameter in a login request to nps/servlet/webacc.

Vulnerable Configurations

Part Description Count
Application
Novell
3

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionNovell iManager Multiple Vulnerabilities. CVE-2010-1929,CVE-2010-1930. Dos exploit for novell platform
fileexploits/novell/dos/14010.txt
idEDB-ID:14010
last seen2016-02-01
modified2010-06-24
platformnovell
port48080
published2010-06-24
reporterCore Security Technologies
sourcehttps://www.exploit-db.com/download/14010/
titleNovell iManager Multiple Vulnerabilities
typedos

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/91009/CORE-2010-0316.txt
idPACKETSTORM:91009
last seen2016-12-05
published2010-06-25
reporterCore Security Technologies
sourcehttps://packetstormsecurity.com/files/91009/Core-Security-Technologies-Advisory-2010.0316.html
titleCore Security Technologies Advisory 2010.0316

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:19857
last seen2017-11-19
modified2010-06-25
published2010-06-25
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-19857
titleNovell iManager Multiple Vulnerabilities

References