What is CVE-2010-1929?

CVE-2010-1929 is a vulnerability in Novell Imanager, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-06-28.

Is CVE-2010-1929 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Novell Imanager

CVE-2010-1929

Multiple stack-based buffer overflows in the jclient._Java_novell_jclient_JClient_defineClass@20 function in jclient.dll in the Tomcat web server in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allow remote authenticated users to execute arb…

Vulnerability class: Buffer Overflow

EPSS: 0.243 (96.2th percentile) — read the EPSS interpretation.

Affected products

Novell Imanager — versions 2.7.0, 2.7.3
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

m3n0sd0n4ld/uCVE

References

40480 (Exploit, vdb-entry, x_refsource_BID)
ADV-2010-1575 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
imanager-class-bo(59694) (vdb-entry, x_refsource_XF)
1024152 (Exploit, vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (Exploit, x_refsource_MISC)
14010 (Exploit, exploit, x_refsource_EXPLOIT-DB)
40281 (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
65737 (x_refsource_OSVDB, vdb-entry)
20100623 CORE-2010-0316 - Novell iManager Multiple Vulnerabilities (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2010-1929?: CVE-2010-1929 is a vulnerability in Novell Imanager, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-06-28.
Is CVE-2010-1929 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.