Buffer overflow in Novell Imanager

CVE-2011-4188

Buffer overflow in the Create Attribute function in jclient in Novell iManager 2.7.4 before patch 4 allows remote authenticated users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted…

Vulnerability class: Buffer Overflow

EPSS: 0.038 (88.4th percentile) — read the EPSS interpretation.

Affected products

Novell Imanager — versions 1.5, 2.0, 2.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

1026894 (vdb-entry, x_refsource_SECTRACK)
imanager-enteredattrname-dos(74669) (vdb-entry, x_refsource_XF)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
48672 (x_refsource_SECUNIA, third-party-advisory)