CVE-2010-2351

Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.

Published: Jun 21, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-2351
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
novell / netware	6.5	6.5.x
novell / netware	6.0-sp1	6.0-sp1.x
novell / netware	6.5-sp1	6.5-sp1.x
novell / netware	5.1	5.1.x
novell / netware	6.5-sp4	6.5-sp4.x
novell / netware	6.0-sp3	6.0-sp3.x
novell / netware	5.0-sp3	5.0-sp3.x
novell / netware	6.0-sp4	6.0-sp4.x
novell / netware	6.5-sp2	6.5-sp2.x
novell / netware	6.5-sp6	6.5-sp6.x
novell / netware	6.0	6.0.x
novell / netware	6.0-sp5	6.0-sp5.x
novell / netware	6.5-sp3	6.5-sp3.x
novell / netware	6.5-sp7	6.5-sp7.x
novell / netware	6.5-sp5	6.5-sp5.x
novell / netware	5.1-sp8	5.1-sp8.x
novell / netware	5.0	5.0.x
novell / netware	5.1-sp7	5.1-sp7.x
novell / netware	6.0-sp2	6.0-sp2.x
novell / netware	-	6.5.x

Vulnerability Database

289,599

CVE-2010-2351