Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

novell open enterprise server 2 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2013-3707
The HTTPSTK service in the novell-nrm package prior to 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 (OES 2) Linux, and OES 11 Linux Gold and SP1, does not make the intended SSL_free and SSL_shutdown calls for the close of a TCP connection, which allows remote malicious ...
Novell Open Enterprise Server 11.0
7.8
CVSSv2
CVE-2011-4913
The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel prior to 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote malicious users to (1) cause a denial of service (integer underflow, heap memory corruption, and ...
Novell Suse Linux Enterprise Server 10.0Linux Linux Kernel 2.6.38Linux Linux Kernel 2.6.38.3Linux Linux KernelLinux Linux Kernel 2.6.38.6Linux Linux Kernel 2.6.38.1Linux Linux Kernel 2.6.38.5Linux Linux Kernel 2.6.38.2Linux Linux Kernel 2.6.38.4Linux Linux Kernel 2.6.38.7
7.5
CVSSv2
CVE-2011-4194
Buffer overflow in Novell iPrint Server in Novell Open Enterprise Server 2 (OES2) through SP3 on Linux allows remote malicious users to execute arbitrary code via a crafted attributes-natural-language field.
Novell Open Enterprise Server 2.0.3Novell Open Enterprise Server 2.0.1Novell Open Enterprise Server 2Novell Open Enterprise Server 2.0.2
7.5
CVSSv2
CVE-2011-3173
Stack-based buffer overflow in the GetDriverSettings function in nipplib.dll in the iPrint client in Novell Open Enterprise Server 2 (aka OES2) SP3 allows remote malicious users to execute arbitrary code via a long (1) hostname or (2) port field.
Novell Iprint Open Enterprise Server 2
7.5
CVSSv2
CVE-2010-4328
Multiple stack-based buffer overflows in opt/novell/iprint/bin/ipsmd in Novell iPrint for Linux Open Enterprise Server 2 SP2 and SP3 allow remote malicious users to execute arbitrary code via unspecified LPR opcodes.
Novell Iprint Open Enterprise Server 2
6.9
CVSSv2
CVE-2009-3547
Multiple race conditions in fs/pipe.c in the Linux kernel prior to 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
Linux Linux Kernel 2.6.32Linux Linux KernelNovell Linux Desktop 9Opensuse Opensuse 11.0Opensuse Opensuse 11.2Suse Suse Linux Enterprise Server 10Suse Suse Linux Enterprise Desktop 10Canonical Ubuntu Linux 9.04Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 9.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 6.06Fedoraproject Fedora 10Vmware Esx 4.0Vmware Vma 4.0Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Desktop 3.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 4.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Server 4.0Redhat Enterprise Linux Workstation 4.0
4.3
CVSSv2
CVE-2009-0611
Multiple cross-site scripting (XSS) vulnerabilities in qfsearch/AdminServlet in QuickFinder Server in Novell Open Enterprise Server 1.x allow remote malicious users to inject arbitrary web script or HTML via (1) the siteloc parameter in a displayaddsite action, the site parameter...
Novell Open Enterprise Server 1.x
9.3
CVSSv2
CVE-2008-5021
nsFrameManager in Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a fi...
Mozilla FirefoxMozilla SeamonkeyMozilla ThunderbirdDebian Debian Linux 4.0Canonical Ubuntu Linux 6.06Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.04Canonical Ubuntu Linux 8.10Fedoraproject Fedora 9Fedoraproject Fedora 8Opensuse Opensuse 10.2Suse Linux Enterprise Server 9Novell Linux Desktop 9Opensuse Opensuse 11.0Opensuse Opensuse 10.3Suse Linux Enterprise Software Development Kit 10Suse Linux Enterprise Debuginfo 10Suse Linux Enterprise Server 10Suse Linux Enterprise Desktop 10Novell Open Enterprise Server -
2.1
CVSSv2
CVE-2005-1761
Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users to cause a denial of service (kernel crash) via ptrace and the restore_sigcontext function.
Novell Open Enterprise Server 9Novell Linux Desktop 9Suse Suse Linux 9.0Suse Suse Linux 9.3Suse Suse Linux 9.2Suse Suse Linux 8Suse Suse Linux 1.0Suse Suse Linux 9.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook