Heap-based Buffer Overflow in Novell ZENworks Configuration Manager (ZCM) Allows Remote Code Execution

Heap-based Buffer Overflow in Novell ZENworks Configuration Manager (ZCM) Allows Remote Code Execution

CVE-2010-4323 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Heap-based buffer overflow in novell-tftp.exe in Novell ZENworks Configuration Manager (ZCM) 10.3.1, 10.3.2, and 11.0, and earlier versions, allows remote attackers to execute arbitrary code via a long TFTP request.

Learn more about our Web Application Penetration Testing UK.