Summary
This host is installed with Novell ZENworks Handheld Management and is prone to buffer overflow vulnerability.
Impact
Successful exploitation could allow remote attackers to execute arbitrary code with SYSTEM privileges or cause denial of service.
Impact Level: Application/System
Solution
Apply the patch, available from below link,
http://download.novell.com/Download?buildid=Sln2Lkqslmk~
*****
NOTE: Ignore this warning, if above mentioned patch is manually applied.
*****
Insight
The flaw exists within module 'ZfHIPCND.exe', which allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400.
Affected
Novell ZENworks Handheld Management 7
References
Severity
Classification
-
CVE CVE-2010-4299 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities