CVE-2008-2145

CWE-119 — Buffer Overflow3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 83.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Client

Timeline

PublishedMay 12

Latest updateMay 1

Description

Stack-based buffer overflow in Novell Client 4.91 SP4 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long username in the "forgotten password" dialog.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDnovell/client4.91

🔴Vulnerability Details

GHSA

GHSA-37hm-7427-xp37: Stack-based buffer overflow in Novell Client 4↗2022-05-01

▶

CVEList

CVE-2008-2145: Stack-based buffer overflow in Novell Client 4↗2008-05-12

▶