Vulnerabilities > CVE-2013-3697 - Numeric Errors vulnerability in Novell Client 2.0/4.91
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Integer overflow in the NWFS.SYS kernel driver 4.91.5.8 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003 and the NCPL.SYS kernel driver in Novell Client 2 SP2 on Windows Vista and Windows Server 2008 and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 might allow local users to gain privileges via a crafted 0x1439EB IOCTL call.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 | |
| OS | 8 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Windows |
| NASL id | NOVELL_CLIENT_PRIV_ESCALATION2.NASL |
| description | The version of Novell Client or Novell Client 2 installed on the remote Windows host is potentially affected by the following vulnerabilities : - An error exists related to |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 69557 |
| published | 2013-09-03 |
| reporter | This script is Copyright (C) 2013-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/69557 |
| title | Novell Client / Client 2 Multiple Vulnerabilities |