Vulnerability Name:

CVE-2010-1929 (CCN-59694)

Assigned:2010-06-23
Published:2010-06-23
Updated:2018-10-10
Summary:Multiple stack-based buffer overflows in the jclient._Java_novell_jclient_JClient_defineClass@20 function in jclient.dll in the Tomcat web server in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allow remote authenticated users to execute arbitrary code via the (1) EnteredClassID or (2) NewClassName parameter to nps/servlet/webacc.
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-119
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2010-1929

Source: CCN
Type: SA40281
Novell iManager Two Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
40281

Source: CCN
Type: SA48407
Novell eDirectory Multiple Vulnerabilities

Source: CCN
Type: SECTRACK ID: 1024152
Novell iManager Bugs Let Remote Users Deny Service and Remote Authenticated Users Execute Arbitrary Code

Source: SECTRACK
Type: Exploit
1024152

Source: CCN
Type: CORE-2010-0316
Novell iManager Multiple Vulnerabilities

Source: MISC
Type: Exploit
http://www.coresecurity.com/content/novell-imanager-buffer-overflow-off-by-one-vulnerabilities

Source: EXPLOIT-DB
Type: Exploit
14010

Source: CCN
Type: Novell Web site
Novell iManager

Source: CCN
Type: Novell Document ID 3426981
History of Issues Resolved in eDirectory 8.8.x

Source: OSVDB
Type: UNKNOWN
65737

Source: CCN
Type: OSVDB ID: 65737
Novell iManager /nps/servlet/webacc/ Multiple Parameter Overflow

Source: BUGTRAQ
Type: UNKNOWN
20100623 CORE-2010-0316 - Novell iManager Multiple Vulnerabilities

Source: BID
Type: Exploit
40480

Source: CCN
Type: BID-40480
Novell iManager Schema Create Class Stack Buffer Overflow Vulnerability

Source: VUPEN
Type: Vendor Advisory
ADV-2010-1575

Source: XF
Type: UNKNOWN
imanager-class-bo(59694)

Source: XF
Type: UNKNOWN
imanager-class-bo(59694)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:novell:imanager:2.7.0:*:*:*:*:*:*:*
  • OR cpe:/a:novell:imanager:2.7.3:*:*:*:*:*:*:*
  • OR cpe:/a:novell:imanager:2.7.3:ftf2:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:novell:edirectory:8.8:*:*:*:*:*:*:*
  • OR cpe:/a:novell:edirectory:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:novell:imanager:2.7:*:*:*:*:*:*:*
  • OR cpe:/a:novell:imanager:2.7.3:*:*:*:*:*:*:*
  • OR cpe:/a:novell:imanager:2.7.3:ftf2:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    novell imanager 2.7.0
    novell imanager 2.7.3
    novell imanager 2.7.3 ftf2
    novell edirectory 8.8
    novell edirectory 8.0
    novell imanager 2.7
    novell imanager 2.7.3
    novell imanager 2.7.3 ftf2